On the Delicious Brains site, there's a new tutorial posted sharing some of the methods included with PHP to improve protection of sensitive data using encryption.
I recently attended Laracon EU 2018 where Marcus Bointon gave a great talk on Crypto in PHP 7.2. I left the talk having a much greater appreciation for how vastly complicated cryptography is, but also for how PHP is making encryption more accessible thanks to the introduction of Sodium. Data encryption in PHP is something I’ve been working on as part of my work on SpinupWP so I thought it was time I shared a few insights. Buckle up, because this could be a bumpy ride!
The author then spends the remainder of the article covering the different types of encryption that are included with recent versions of the PHP language:
- one-way hashing (such as the bcrypt password hashing functionality)
- secret key encryption (symmetric)
- envelope encryption (such as Google's KMS)
Code examples are provided to show each of the types in action and links are also included for more information on several related topics/resources.