Forum Discussion
Cookie encryption is performed in hardware, if its available.
- Ed_SummersApr 11, 2017Nimbostratus
Thanks, Kevin.
One follow on if I may since I see you had iRules for breakfast this morning. Same is true for AES::encrypt in iRules? Performed in CPU?
- Kevin_Davies_40Apr 12, 2017Nacreous
Every morning!
It is a good question and probably one that warrants a seperate question here. There is no information that explains if this is done in hardware. We know their is dedicated offload for SSL and Compression. Which of those encryptions are offloaded is answered in K13213 However does this offloading require an SSL profile? Does AES:: command tap into that offloading? Would be a good question and I suggest you post it.
- Kevin_Davies_40Apr 12, 2017Nacreous
Ed, I have confirmed and updated my original answer. The CRYPTO:: and AES:: commands will use hardware offload (CAVIUM) if its available. This means it is highly likely that cookie encryption will be doing the same thing since they use the same functionality.
- Ed_SummersApr 12, 2017Nimbostratus
Many thanks, Kevin! 15 points to you for the secret hook-ups and information. :D I had found that KB article but as you noted it wasn't clear if other crypto operations used hardware as well. I suspected they would but good to have confirmation.
By chance did you find this through public documentation, internal documentation, SE contact, or other means?
- Kevin_Davies_40Apr 13, 2017Nacreous
SE contact