If we think on the NSA - it would be great if Fortinet would support some less widespread encryption protocols for VPN. Between Fortigate units and FortiClient it would work fine and that' s okay. I believe, the NSA is trained to crack AES, DES, SSL and other common cryptographic protocols day by day. But if we could use something different - maybe developed in-house by fortinet for example - thy would have a lot more trouble to decrypt that, because it' s not that common.
THAT would be outstanding in the market. For interoperation with other vendors, fortunate customers could use AES as well of course but within the Fortinet eco system it would be great to have alternatives. Maybe with an open API so that it is easy so implement new cryptographic protocols if necessary of when the customer has the necessary manpower and knowledge.