For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Icon for Cirrus rank

Cirrus

Jul 27, 2018

JSON Web Signature (JWS) verification

Hi. Can LTM/ASM verify JSON Web Signatures (included as X-JWS-SIGNATURE in http header) against the payload?

ASM Advanced WAF

1 Reply

samstep
Cirrocumulus
Aug 02, 2018
X-JWS-SIGNATURE is not supported in ASM at the moment, it can be achieved by developing an iRule though if you have such a requirement.

Don't forget that ASM automatically adds a layer of digitally signed cookies kind of addressing the same problem for any traffic:

https://support.f5.com/csp/article/K6850

Hope this helps,

Sam

F5 Academy at AppWorld 2026

DevCentral News

Aswin MK - November 2025 Featured Member

DevCentral News

Introducing the F5 AI Assistant for BIG-IP

Technical Articles

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5