Introduction to sensitive data encryption and decryption technology in PHP

Introduction to Sensitive Data Encryption and Decryption Technology in PHP

With the rapid development of the Internet, information security issues have become increasingly prominent. When developing web applications, protecting users' sensitive data is crucial. To ensure data security, sensitive data often needs to be encrypted and decrypted. This article will introduce commonly used sensitive data encryption and decryption techniques in PHP and provide corresponding code examples.

1. Encryption technology

1. Symmetric encryption

The symmetric encryption algorithm uses the same key for encryption and decryption. In PHP, symmetric encryption can be implemented using the mcrypt extension or the openssl extension.

Sample code:

<?php
$key = "abc123";  // 密钥

function encrypt($data, $key) {
    $encrypted_text = openssl_encrypt($data, 'AES-128-CBC', $key, OPENSSL_RAW_DATA, '1234567890abcdef');
    return base64_encode($encrypted_text);
}

function decrypt($encrypted_data, $key) {
    $encrypted_text = base64_decode($encrypted_data);
    return openssl_decrypt($encrypted_text, 'AES-128-CBC', $key, OPENSSL_RAW_DATA, '1234567890abcdef');
}

$original_data = "Hello world!";
$encrypted_data = encrypt($original_data, $key);
$decrypted_data = decrypt($encrypted_data, $key);

echo "原始数据：".$original_data."<br>";
echo "加密后的数据：".$encrypted_data."<br>";
echo "解密后的数据：".$decrypted_data."<br>";
?>

2. Asymmetric encryption

The asymmetric encryption algorithm uses a pair of keys for encryption and decryption, namely the public key and private key. In PHP, asymmetric encryption can be implemented using the openssl extension.

Sample code:

<?php
// 生成公钥和私钥
$config = array(
    "private_key_bits" => 2048,
    "private_key_type" => OPENSSL_KEYTYPE_RSA,
);

$res = openssl_pkey_new($config);
openssl_pkey_export($res, $private_key);
$public_key = openssl_pkey_get_details($res)["key"];

function encrypt($data, $public_key) {
    openssl_public_encrypt($data, $encrypted, $public_key);
    return base64_encode($encrypted);
}

function decrypt($encrypted_data, $private_key) {
    openssl_private_decrypt(base64_decode($encrypted_data), $decrypted, $private_key);
    return $decrypted;
}

$original_data = "Hello world!";
$encrypted_data = encrypt($original_data, $public_key);
$decrypted_data = decrypt($encrypted_data, $private_key);

echo "原始数据：".$original_data."<br>";
echo "加密后的数据：".$encrypted_data."<br>";
echo "解密后的数据：".$decrypted_data."<br>";
?>

2. Decryption technology

Whether it is symmetric encryption or asymmetric encryption, decryption is essential. In PHP, you can use the corresponding decryption function to decrypt the encrypted data.

1. Symmetric decryption

Symmetric decryption uses the same key for decryption. In the symmetric encryption example above, the encrypted data can be decrypted using the same key.

2. Asymmetric decryption

Asymmetric decryption requires the use of a private key to decrypt the encrypted data. In the asymmetric encryption example above, the encrypted data can be decrypted using the private key.

3. Notes

1. Security of keys

The security of keys is the basis for encryption and decryption. Please ensure that the key is stored securely to avoid illegal access.

2. Integrity of data

During the encryption and decryption process, the integrity of the data needs to be ensured. Data integrity can be verified by implementing a Message Authentication Code (MAC).

3. Selection of encryption algorithm

When selecting an encryption algorithm, it should be selected based on actual needs and security. Commonly used encryption algorithms include AES, DES, RSA, etc.

Summary:

This article introduces sensitive data encryption and decryption technology in PHP, including symmetric encryption and asymmetric encryption. The security of sensitive data can be ensured through the proper use of encryption technology. When developing web applications, it is crucial to protect users' sensitive data. I believe that the technology introduced in this article can help readers improve data security.

The above is the detailed content of Introduction to sensitive data encryption and decryption technology in PHP. For more information, please follow other related articles on the PHP Chinese website!