Bug ID 931033: Device ID Deletions anomaly might be raised in case of browser/hardware change

Last Modified: Jan 20, 2023

Bug Tracker

Affected Product:  See more info
BIG-IP ASM(all modules)

Known Affected Versions:
15.1.0, 15.1.0.1, 15.1.0.2, 15.1.0.3, 15.1.0.4, 15.1.0.5, 15.1.1, 15.1.2, 15.1.2.1, 15.1.3, 15.1.3.1, 15.1.4, 15.1.4.1, 15.1.5, 15.1.5.1, 15.1.6, 15.1.6.1, 15.1.7, 15.1.8, 15.1.8.1, 16.0.0, 16.0.0.1, 16.0.1, 16.0.1.1, 16.0.1.2, 16.1.0, 16.1.1, 16.1.2, 16.1.2.1, 16.1.2.2, 16.1.3, 16.1.3.1, 16.1.3.2, 16.1.3.3

Opened: Jul 26, 2020
Severity: 4-Minor

Symptoms

-- Valid users complain they are unable to connect, or they are required to do CAPTCHA frequently. -- On the BIG-IP device, 'Device ID Deletion' violations are being raised.

Impact

Valid requests might be mitigated.

Conditions

-- Bot Defense Profile with 'Device ID' mode set to 'Generate After Access' is attached to the virtual server. -- Some change in the browser or computer hardware occurs. -- Surfing to multiple qualified pages at the same time.

Workaround

Raise the threshold of 'Device ID Deletion' anomaly (recommended value according to the webserver, is approximately 4).

Fix Information

None

Behavior Change