Forum Discussion

Nimbostratus

Apr 19, 2016

encryption with AES/CRYPTO - how to securely store the encryption key

Dear All, I need to encrypt/decrypt some sensitive data which is permanently stored in a datagroup. Is there a way to store the encryption key so that it remained accessible from an iRule but at...

Cirrus

Apr 19, 2016

Hello,

You can use an ifile. It is stored on the filesystem (in clear) but not in the configuration file. You can use a script and the cron to generate your keys within ifiles.

Or alternatively, you can set up a temporary key within a session table : https://devcentral.f5.com/wiki/irules.table.ashx

The issue with table is that it doesn't persist accross reboot. You can create your keys using commands within irules. But I'm not sure that you have the right command available to generate a cryptographically secured key.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

encryption with AES/CRYPTO - how to securely store the encryption key

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How can I get started with iCall

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Related Content

Decrypt, Encrypt, Decrypt, Encrypt, Encrypt....

Let's Encrypt

Encrypted UCS Backup with REST-API

Automate Let's Encrypt Certificates on BIG-IP

Load Balancing TCP TLS Encrypted Syslog Messages

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS