Getting String Decrypt Failed Exception in RA logs

book

Article ID: 36139

calendar_today

Updated On:

Products

CA Rapid App Security CA Advanced Authentication CA API Gateway

Issue/Introduction

Question:

I am using CA Risk Authentication 8.1 server for Risk evaluation. In arcotriskfort.log, I am seeing the following error messages:

Wed Feb 04 05:16:05.902 2015 INFO: pid 1605 tid 84286320: 8: 3:10873: coreDecrypt: String decrypt failed. Error Message [Error in CryptoUtil::decryptPassword(..): Arcot Exception,Error: unpadded symmetric decryption input not an even number of blocks; in SymmetricKey.cpp, line 588] 

I do not see any transaction failing due to this, RiskMinder is successfully generating risk advice for the same transaction. However, I am not sure what this error means and how this impact risk evaluation?

 

Environment:

Product: CA Risk Authentication (CA RiskMinder or RiskFort) 8.x server and client libraries

Database: Any supported Database ( As per product release notes)

Browser: Any browser ( As per product release notes)

 

Answer:

This error comes when RiskMinder server fails to decrypt incoming deviceid cookie. Generally, this happens when user tries to login for the first time or the deviceid cookie is cleared from browser. In such case, there is no incoming deviceid and the decryption failed. This error does not impact risk evaluation and can be seen in the logs even in case of successful RiskMinder transactions.

Error Logs Reference:

coreDecrypt: String decrypt failed. Error Message [Error in CryptoUtil::decryptPassword(..): Arcot Exception,Error: unpadded symmetric decryption input not an even number of blocks; in SymmetricKey.cpp, line 588] 

Could not decypt cookie[error]

Environment

Release: ARCWFT05900-8.1-Arcot-WebFort-for Windows
Component: