Forum Discussion

Nimbostratus

Apr 19, 2016

encryption with AES/CRYPTO - how to securely store the encryption key

Dear All, I need to encrypt/decrypt some sensitive data which is permanently stored in a datagroup. Is there a way to store the encryption key so that it remained accessible from an iRule but at...

Cirrus

Apr 19, 2016

Hello,

You can use an ifile. It is stored on the filesystem (in clear) but not in the configuration file. You can use a script and the cron to generate your keys within ifiles.

Or alternatively, you can set up a temporary key within a session table : https://devcentral.f5.com/wiki/irules.table.ashx

The issue with table is that it doesn't persist accross reboot. You can create your keys using commands within irules. But I'm not sure that you have the right command available to generate a cryptographically secured key.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

encryption with AES/CRYPTO - how to securely store the encryption key

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Does F5 Rules for AWS WAF - Common Vulnerabilities & Exposures Mitigate Log4J vulnerabilities

Credentialed Scanning - F5OS - Rseries

WebSocket connection to 'wss://...' failed: Invalid frame header

f5 asm reporting aggregate

rSeries 4600 additional Core Enable

Related Content

Decrypt, Encrypt, Decrypt, Encrypt, Encrypt....

Let's Encrypt

Automate Let's Encrypt Certificates on BIG-IP

Load Balancing TCP TLS Encrypted Syslog Messages

Encrypting Cookies

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS