Last Modified: Nov 07, 2022
Affected Product:
See more info
BIG-IP FPS
Known Affected Versions:
13.0.0, 13.0.0 HF1, 13.0.0 HF2, 13.0.0 HF3, 13.0.1
Fixed In:
13.1.0
Opened: Apr 20, 2017
Severity: 3-Major
When real-time encryption is enabled and parameters that are configured with encryption are enabled, the system cannot encrypt the value populated by the script in real-time, so that parameter will be sent as plain text.
FPS cannot encrypt the encryption-enabled parameter in real-time, so that parameter will be sent as plain text.
1. Real-time encryption enabled. 2. Parameter configured with encryption enabled. 3. The encryption-enabled parameter is populated by the script.
None.
The system now supports the combination of real-time and on-submit encryption when using the Before Load Function: function(C){ C.XX.realTimeAndSubmitEnc = true;}. Note: You must configure the Before Load Function because this is not the default setting.
