Forum Discussion

Nimbostratus

Feb 03, 2016

F5 iRule Example integrating HMAC

I currently utilize a static key value to create a custom encrypted cookie to validate user session authenticity via cookie values. I would like to move over to using an HMAC solution, but having iss...

Nimbostratus

WOW! nicely done.. will get back to playing on this next week, but for now.. Great work.

Kai_Wilke

MVP

Feb 15, 2016

You're welcome! FYI: In the meantime I was able to cutoff additional 20% overhead for the per-request verification. It takes now roughly 65k CPU clicks to verify a single HMAC protected HTTP request (while holding an HMAC cache bucket of ~1million unique HMAC tokens). I'm currently still collecting some real-world experiences with this code, but I'm trying to publish an updated version at the end of the week to the CodeShare. Are you fine when I include some credits for you as the origin of this lovely idea? ;-) Cheers, Kai

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

F5 iRule Example integrating HMAC

Recent Discussions

INFORM: Entrust CA will be untrusted in Chrome after Oct 31, 2024

Can BIG-IP DNS recursion only my domain?

CPU data, control and analytics plane utilization

Can import iSeries 4000 config (OS ver 1.3.x) to rSeries 5000 (f5os-a 1.5.2)?

Datagroup with address and value

Related Content

Example Irule

Octopus Deploy integration with F5

LTM and ASM Integration (Separate boxes)

iRULE regsub error

iRule assistance for subfolder redirect

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS