Forum Discussion

dubdub's avatar
Icon for Nimbostratus rankNimbostratus
Apr 24, 2012

Cookie encryption variability

Hi all,



This may be a very stupid question... I am encrypting a cookie with a static name and value, but see in the logs that the encrypted value changes with each session. If I am using the same name, value, and passphrase for the encryption across the board, I would have expected the encrypted result to be the same; does "HTTP::cookie encrypt" include other seed factors into the encryption algorithm?







3 Replies

  • Hi Jen,



    The HTTP::cookie encrypt function does use a salt. So the cipher text should be different for each encryption iteration even with the same plaintext input.



  • Does any one happen to know what algorithm F5 uses to encrypt cookies.MD5 or SHA