PHP AES Encrypt / Decrypt
Secure Encryption Techniques in PHP
Encrypting and decrypting data is essential for maintaining data confidentiality. For secure PHP encryption, it is crucial to utilize proven and reliable encryption libraries rather than creating your own implementations.
Libsodium for Advanced Encryption
If possible, consider installing PECL extensions and leveraging libsodium for enhanced encryption capabilities. Libsodium provides robust cryptographic algorithms, such as authenticated encryption, ensuring protection against bit-rewriting attacks.
use Sodium\randombytes_buf;
use Sodium\crypto_secretbox;
function safeEncrypt($message, $key)
{
$nonce = randombytes_buf(CRYPTO_SECRETBOX_NONCEBYTES);
return base64_encode($nonce . crypto_secretbox($message, $nonce, $key));
}
function safeDecrypt($encrypted, $key)
{
$decoded = base64_decode($encrypted);
$nonce = substr($decoded, 0, CRYPTO_SECRETBOX_NONCEBYTES, '8bit');
$ciphertext = substr($decoded, CRYPTO_SECRETBOX_NONCEBYTES, null, '8bit');
return crypto_secretbox_open($ciphertext, $nonce, $key);
}
$key = randombytes_buf(CRYPTO_SECRETBOX_KEYBYTES);
$message = '...';
$ciphertext = safeEncrypt($message, $key);
$plaintext = safeDecrypt($ciphertext, $key);
var_dump($ciphertext);
var_dump($plaintext);Halite for Encrypted Cookies
For encrypted cookies powered by libsodium, consider using the Halite library by Paragon Initiative Enterprises, which simplifies the integration process.
Best Practices
Follow these best practices for secure encryption:
The above is the detailed content of How Can I Securely Encrypt and Decrypt Data in PHP Using Libsodium?. For more information, please follow other related articles on the PHP Chinese website!
![[Web front-end] Node.js quick start](https://img.php.cn/upload/course/000/000/067/662b5d34ba7c0227.png)
