Forum Discussion

Nacreous

Sep 03, 2010

AES::encrypt - can decrypt function be carried out elsewhere?

If the F5 has used AES ecryption to encrypt a string via AES::encrypt, can the key be exported and used on another downstream device to decrypt? This downstream device could be a) another...

Cirrocumulus

Sep 03, 2010

Another F5 device, yes certainly (You can prove that with an HA pair and a hard-coded or shared key. When an HA failover occurs, the backup device can now decrypt the content that the primary device encrypted)...

A non-F5 device, SHOULD be possible, but I've never tried it...

I suspect what you're trying to do though is to tunnel traffic across a network from one F5 to another? If so, why not simply use an SSL/TLS tunnel or connection?

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

AES::encrypt - can decrypt function be carried out elsewhere?

Recent Discussions

self-directed requests fail because of no certificate

Decode ObjectSID from Base64-encode string

iRule - Url rewrite and header replace and pool selection not working

ip x-forwarding

F5 ASM API-Protection Policy

Related Content

AES Encryption via iRules

OWASP Tactical Access Defense Series: Broken Function Level Authorization (BFLA)

F5 Cloud-Native Functions For Secure Ingress

F5 Cloud-Native Functions For Modern Demands - Part 1

F5 Cloud-Native Functions For Modern Demands - Part 2

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS