Download the PHP package mmeyer2k/dcrypt without Composer
On this page you can find all versions of the php package mmeyer2k/dcrypt. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.
Download mmeyer2k/dcrypt
More information about mmeyer2k/dcrypt
Files in mmeyer2k/dcrypt
Package dcrypt
Short Description A petite library of encryption functionality for PHP
License MIT
Informations about the package dcrypt
:closed_lock_with_key:dcrypt
A petite library of essential encryption functions for PHP 7.1+. For legacy PHP version support, look here.
Install
Add dcrypt to your composer.json file requirements. Don't worry, dcrypt does not have any dependencies of its own.
Block Ciphers
The dcrypt library helps application developers avoid common mistakes in crypto implementations that leave data at risk.
Keys
Safe usage of dcrypt's block cipher functions requires the use of a high entropy 256 bit (minimum) key. Keys should be passed into dcrypt in base64 encoded format. You are responsible for the randomness of your key!
Generate a new key on the linux CLI:
Or with PHP...
AES-256 GCM Encryption
Since PHP 7.1 supports native AEAD encryption modes, using GCM would be safest option for most applications. Dcrypt will handle the AEAD authentication tag, SHA3-256 HMAC, initialization vector and encrypted message as a single unencoded string.
If in doubt, use this example and don't read any further!
Other AES-256 Modes
If you read to this point then you are an experienced cryptonaut, congrats! :ok_hand: :metal:
Several AES-256 encryption modes are supported out of the box via hardcoded classes.
Class Name | OpenSSL Cipher | Security Rating | Further Reading |
---|---|---|---|
Aes256Gcm or Aes |
aes-256-gcm |
:smiley: | wiki |
Aes256Ctr |
aes-256-ctr |
:relaxed: | wiki |
Aes256Cbc |
aes-256-cbc |
:expressionless: | wiki |
Aes256Ofb |
aes-256-ofb |
:grimacing: | wiki |
Aes256Cfb |
aes-256-cfb |
:hushed: | wiki |
Aes256Ccm |
aes-256-ccm |
:astonished: | wiki |
Aes256Ecb |
aes-256-ecb |
:rage: | wiki |
Custom Encryption Suites
Dcrypt is compatible with most OpenSSL ciphers and hashing algorithms supported by PHP.
Run openssl_get_cipher_methods()
and hash_algos()
to view supported options on your platform.
Static Wrapper
Use any cipher/algo combination by calling the OpensslStatic
class.
Class Overloading
Dcrypt's internal functions are easily extendable by overloading the OpensslBridge
class.
Layered Encryption Factory
Feeling especially paranoid? Not sure which cipher methods and algos can be trusted? Why not try all of them.
Message Authenticity Checking
By default, \Dcrypt\Exceptions\InvalidChecksumException
exception will be raised before decryption is allowed to proceed when the supplied checksum is not valid.
Stream Ciphers
Be sure you understand the risks and inherent issues of using a stream cipher before proceeding.
- Each key should only be used once
- Data integrity can not be guaranteed
- https://en.wikipedia.org/wiki/Stream_cipher_attacks
- https://jameshfisher.com/2018/01/01/making-a-stream-cipher/
One Time Pad
A novel counter-based stream cipher.
OneTimePad
uses SHA3-512 to output a keystream that is ⊕'d with the input in 512 bit chunks.
OneTimePad
can use any hashing algorithm to generate the pseudorandom keystream.
String Helpers
Generate random base62 string tokens with specified number of characters.
Compare 2 strings in a time-safe manner.
Show me some love :heart_eyes::beer:
Developing dcrypt has been a great journey for many years. If you find dcrypt useful, please consider donating.
LTC |
LN97LrLCNiv14V6fntp247H2pj9UiFzUQZ |
BTC |
3N7vhA6ghWb1VrP4nGA6m6mzA9T2ASCVEj |
ETH |
0xe14a56046f28fCEF56A0EA4a84973bDdFF546923 |
Or please consider checking out my dcrypt inspired encryption library for .NET, check out harpocrates.
All versions of dcrypt with dependencies
ext-openssl Version *
ext-mbstring Version *