Forum Discussion

Nimbostratus

Nov 03, 2018

Client Side Sensitive Parameter Encryption

Hi All, We have set some of the parameters as sensitive for the login pages and confirmed all those sensitive parameters values are masked in the ASM Logs. Query: Whether the ASM Sensitive Param...

Cirrocumulus

Nov 03, 2018

ASM only protects the server side (requests which made it from user's browser to F5). If a user types a password/credit card in their browsers and doesn't click Submit button there is no way ASM can protect it as this password has not reached ASM yet.

If you want to protect the client side from man-in-the-browser malware you need WebSafe and Advanced WAF

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Client Side Sensitive Parameter Encryption

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Round-robin method not load balanced

F5 AI Roadmap

F5 object groups in AFM

F5 BGP Peering in Active /Standby Cluster

F5 rSeries || Upgrade tenant

Related Content

Decrypt, Encrypt, Decrypt, Encrypt, Encrypt....

Let's Encrypt

Automate Let's Encrypt Certificates on BIG-IP

Load Balancing TCP TLS Encrypted Syslog Messages

Encrypting Cookies

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS