AES functions

Hi,

 

 

This thread is old now, I'm hoping somebody is still interested in this topic. The previous post mentions that the AES encrypt/decrypt commands use CWC mode. Anybody know where this info comes from and how I can find out more detail?

 

 

My task is to make the F5 AES decrypt function interoperate with an external AES encoder. Ideally the encoder would be in java - but as a starting point, I've got some C code which can encrypt and decrypt in CWC mode.

 

 

I'd like to use the C code to encrypt something, and then use the F5 to decrypt it.

 

 

But I don't know exactly what data the F5 needs in the encrypted data. When I run a test and use AES::encrypt to encrypt something on the F5, I find that the amount of output data is around 34 bytes longer than the input plain text. (I don't always get the exact same size output, which is why I say "around" 34 bytes longer).

 

 

I'm guessing the extra bytes include a 16 byte "tag", an 11 byte "nonce" or init vector, and some extra bytes which I don't know what they are. I also don't know what order these fields have to go, in order to get the F5 to decrypt them correctly.

 

 

Anyone have any ideas about this, or anyone been able to get an external AES program to interoperate with the F5 LTM?

 

 

Regards,

 

Scott