101 · Question #163
The BIG-IP ASM System sets two types of cookies to enforce elements in the security policy. The two types are main and frame cookies. What is the purpose of the frame cookie? (Choose 2)
The correct answer is C. Stores dynamic parameters and values D. Handles dynamic parameter names and flow extractions. BIG-IP ASM frame cookies store dynamic parameter values and handle dynamic parameter name extraction and flow tracking across requests.
Question
The BIG-IP ASM System sets two types of cookies to enforce elements in the security policy. The two types are main and frame cookies. What is the purpose of the frame cookie? (Choose 2)
Options
- AValidates domain cookies
- BDetects session expiration
- CStores dynamic parameters and values
- DHandles dynamic parameter names and flow extractions
How the community answered
(41 responses)- A7% (3)
- B2% (1)
- C90% (37)
Why each option
BIG-IP ASM frame cookies store dynamic parameter values and handle dynamic parameter name extraction and flow tracking across requests.
Validating domain cookies is a responsibility of the main ASM cookie, not the frame cookie.
Detecting session expiration is handled by the main ASM cookie, not the frame cookie.
Frame cookies are used by BIG-IP ASM to store the values of dynamic parameters captured during a session, allowing the system to track and validate those values in subsequent requests.
Frame cookies also manage dynamic parameter names and support flow-level extractions, enabling ASM to enforce policy on parameters whose names or values change between page requests in a multi-step web flow.
Concept tested: BIG-IP ASM frame cookie purpose and function
Source: https://support.f5.com/csp/article/K8334
Topics
Community Discussion
No community discussion yet for this question.