New features in PHP 8: Added verification and signing
PHP 8 is the latest version of PHP, bringing more convenience and functionality to programmers. This version has a special focus on security and performance, and one of the noteworthy new features is the addition of verification and signing capabilities. In this article, we'll take a closer look at these new features and their uses.
Verification and signature are very important security concepts in computer science. They are often used to ensure that the data transmitted is complete and authentic. Verification and signatures become especially important when dealing with online transactions and sensitive information, because if someone is able to tamper with the data, it could cause unpredictable harm to the company and customers.
In PHP 8, there are two new extensions for handling verification and signing: sodium and openssl. These extensions make it easier to use modern cryptography and security protocols in PHP.
sodium extension
Sodium is a modern cryptography library that provides API access to many cryptographic algorithms and security functions. It has become the library of choice for developers working with secure cryptography because it is based on state-of-the-art cryptography standards such as Curve25519 and Chacha20.
In PHP 7.2, the Sodium extension was added to the PHP standard library and became an optional extension in PHP 7.2. In PHP 8, it has become the default extension.
Use the sodium extension for verification
The sodium extension provides a function called sodium_crypto_sign_detached(), which can be used to sign data. The signature generates a specific string that can be used to verify whether the data has been tampered with.
The following is an example of signing and verifying using the sodium_crypto_sign_detached() function:
<?php
$data = "hello world";
$keys = sodium_crypto_sign_keypair();
$signature = sodium_crypto_sign_detached($data, $keys['secret']);
if (sodium_crypto_sign_verify_detached($signature, $data, $keys['public'])) {
echo "签名有效";
} else {
echo "签名无效";
}In this example, we first generate a pair of public and private keys. Then use the $sodium_crypto_sign_detached() function to sign the string and store the signature result in the $signature variable. Finally, use the $sodium_crypto_sign_verify_detached() function to verify that the signature is valid.
If the signature is valid, then "Signature is valid" will be printed to the screen, otherwise "Signature is invalid" will be printed.
Authentication using openssl extension
OpenSSL is a popular encryption and security library that provides many encryption algorithms and security features. OpenSSL extensions have been built into PHP, making it more convenient to use OpenSSL in PHP.
The OpenSSL extension provides another function called openssl_sign() that can sign data. Likewise, the extension also provides the function openssl_verify() for verifying signatures.
The following is an example of signing and verifying using openssl_sign() and openssl_verify() functions:
<?php
$data = "hello world";
$key = openssl_pkey_new(['digest_alg' => 'sha512']);
openssl_sign($data, $signature, $key);
if (openssl_verify($data, $signature, $key)) {
echo "签名有效";
} else {
echo "签名无效";
}In this example, we first use the openssl_pkey_new() function to generate a pair of public and private keys key. The string is then signed using the openssl_sign() function and the signature result is stored in the $signature variable. Finally, use the openssl_verify() function to verify that the signature is valid.
If the signature is valid, then "Signature is valid" will be printed to the screen, otherwise "Signature is invalid" will be printed.
in conclusion
Verification and signature are important methods to ensure data security. In PHP 8, the sodium and openssl extensions will make verification and signing easier. Developers can take advantage of these new features to provide more secure services to companies and customers. If you are a PHP developer, we recommend you take a deep dive into the sodium and openssl extensions to maximize security and protect your users.
The above is the detailed content of New features in PHP 8: Added verification and signing. For more information, please follow other related articles on the PHP Chinese website!
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
AI Hentai Generator
Generate AI Hentai for free.
Hot Article
Hot Tools
Notepad++7.3.1
Easy-to-use and free code editor
SublimeText3 Chinese version
Chinese version, very easy to use
Zend Studio 13.0.1
Powerful PHP integrated development environment
Dreamweaver CS6
Visual web development tools
SublimeText3 Mac version
God-level code editing software (SublimeText3)
Hot Topics
How to use absolute value in c++
May 06, 2024 pm 06:15 PM
There are two ways to obtain absolute values in C++: 1. Use the built-in function abs() to obtain the absolute value of an integer or floating point type; 2. Use the generic function std::abs() to obtain various supported absolute values. Operates on absolute values of data types.
How to pop up a window in python
May 05, 2024 pm 08:15 PM
There are two ways to create popups in Python: Tkinter: Use the Tkinter library to create Tk or TopLevel widgets. Pyglet: Use the Pyglet library to create Window windows.
How to use std:: in c++
May 09, 2024 am 03:45 AM
std is the namespace in C++ that contains components of the standard library. In order to use std, use the "using namespace std;" statement. Using symbols directly from the std namespace can simplify your code, but is recommended only when needed to avoid namespace pollution.
What does prime mean in c++
May 07, 2024 pm 11:33 PM
prime is a keyword in C++, indicating the prime number type, which can only be divided by 1 and itself. It is used as a Boolean type to indicate whether the given value is a prime number. If it is a prime number, it is true, otherwise it is false.
What does fabs mean in c++
May 08, 2024 am 01:15 AM
The fabs() function is a mathematical function in C++ that calculates the absolute value of a floating point number, removes the negative sign and returns a positive value. It accepts a floating point parameter and returns an absolute value of type double. For example, fabs(-5.5) returns 5.5. This function works with floating point numbers, whose accuracy is affected by the underlying hardware.
_complex usage in c language
May 08, 2024 pm 01:27 PM
The complex type is used to represent complex numbers in C language, including real and imaginary parts. Its initialization form is complex_number = 3.14 + 2.71i, the real part can be accessed through creal(complex_number), and the imaginary part can be accessed through cimag(complex_number). This type supports common mathematical operations such as addition, subtraction, multiplication, division, and modulo. In addition, a set of functions for working with complex numbers is provided, such as cpow, csqrt, cexp, and csin.
What does config mean in java?
May 07, 2024 am 02:39 AM
Config represents configuration information in Java and is used to adjust application behavior. It is usually stored in external files or databases and can be managed through Java Properties, PropertyResourceBundle, Java Configuration Framework or third-party libraries. Its benefits include decoupling and flexibility. , environmental awareness, manageability, scalability.
How to calculate absolute value in c++
May 06, 2024 pm 06:21 PM
There are three ways to find the absolute value in C++: Using the abs() function, you can calculate the absolute value of any type of number. Using the std::abs() function, you can calculate the absolute value of integers, floating point numbers, and complex numbers. Manual calculation of absolute values, suitable for simple integers.
