"Security is a process, not a product" Bruce Schneier

Cryptography in PHP: use cases

Posted: November 14th, 2011 | Author: enrico | Filed under: Cryptography, PHP | Tags: Cryptography, encryption, PHP, Security | No Comments »

I finally found the time to upload the slides of my talk “Cryptography in PHP: use cases” presented during the ZendCon 2011 conference in Santa Clara:

Cryptography in PHP: use cases

View more presentations from Enrico Zimuel

Moreover, I improved the security of the SecureSession PHP class, presented in the demo part of the talk, with the following changes:

added the authentication to the encryption data using HMAC (encrypt-then-authenticate);
the random keys are generated using OpenSSL or Mcrypt with mcrypt_create_iv($length, MCRYPT_DEV_URANDOM).

You can find the source of this project on my github account.

Enrico Zimuel

Software engineering, computer security, cryptography

Cryptography in PHP: use cases

Leave a Reply

Follow me

Next conferences

Recent Posts

My books

Archivio