Presentation is loading. Please wait.

Presentation is loading. Please wait.

Encryptie 1 maart 2016.

Published byนริศา บราวน์ Modified over 6 years ago

Similar presentations

Presentation on theme: "Encryptie 1 maart 2016."— Presentation transcript:

1 Encryptie 1 maart 2016

2 Cryptography Extensions
Crack — Cracklib CSPRNG Hash — HASH Message Digest Framework Mcrypt Mhash OpenSSL Password Hashing

3 Cryptography Extensions
Crack — Cracklib These functions allow you to use the CrackLib library to test the 'strength' of a password. The 'strength' of a password is tested by that checks length, use of upper and lower case and checked against the specified CrackLib dictionary. CrackLib will also give helpful diagnostic messages that will help 'strengthen' the password. CSPRNG The » cryptographically secure pseudo-random number generator (CSPRNG) API provides an easy and reliable way to generate crypto-strong random integers and bytes for use within cryptographic contexts. This exists as of PHP but there is also a » userland implementation for PHP >=

4 Cryptography Extensions
Hash — HASH Message Digest Framework Message Digest (hash) engine. Allows direct or incremental processing of arbitrary length messages using a variety of hashing algorithms. Mcrypt This is an interface to the mcrypt library, which supports a wide variety of block algorithms such as DES, TripleDES, Blowfish (default), 3-WAY, SAFER-SK64, SAFER-SK128, TWOFISH, TEA, RC2 and GOST in CBC, OFB, CFB and ECB cipher modes. Additionally, it supports RC6 and IDEA which are considered "non-free". CFB/OFB are 8bit by default.

5 Cryptography Extensions
Mhash These functions are intended to work with » mhash. Mhash can be used to create checksums, message digests, message authentication codes, and more. This is an interface to the mhash library. Mhash supports a wide variety of hash algorithms such as MD5, SHA1, GOST, and many others. For a complete list of supported hashes, refer to the constants page. The general rule is that you can access the hash algorithm from PHP with MHASH_hashname. For example, to access TIGER you use the PHP constant MHASH_TIGER. OpenSSL This module uses the functions of » OpenSSL for generation and verification of signatures and for sealing (encrypting) and opening (decrypting) data. OpenSSL offers many features that this module currently doesn't support. Some of these may be added in the future.

6 Cryptography Extensions
Password Hashing The password hashing API provides an easy to use wrapper around crypt() to make it easy to create and manage passwords in a secure manner. This extension is available since PHP but there is also an » userland implementation for PHP >=

7 Mcrypt This is an interface to the mcrypt library, which supports a wide variety of block algorithms such as DES, TripleDES, Blowfish (default), 3-WAY, SAFER-SK64, SAFER-SK128, TWOFISH, TEA, RC2 and GOST in CBC, OFB, CFB and ECB cipher modes. Additionally, it supports RC6 and IDEA which are considered "non-free". CFB/OFB are 8bit by default.

8 Mcrypt library This is an interface to the mcrypt library, which supports a wide variety of block algorithms such as DES, TripleDES, Blowfish (default), 3-WAY, SAFER-SK64, SAFER-SK128, TWOFISH, TEA, RC2 and GOST in CBC, OFB, CFB and ECB cipher modes. Additionally, it supports RC6 and IDEA which are considered "non-free". CFB/OFB are 8bit by default.

9 Predefined Constants The constants below are defined by this extension, and will only be available when the extension has either been compiled into PHP or dynamically loaded at runtime. Mcrypt can operate in four block cipher modes (CBC, OFB, CFB, and ECB). If linked against libmcrypt-2.4.x or higher the functions can also operate in the block cipher mode nOFB and in STREAM mode. Below you find a list with all supported encryption modes together with the constants that are defined for the encryption mode. For a more complete reference and discussion see Applied Cryptography by Schneier (ISBN ).

10 Predefined Constants MCRYPT_MODE_ECB (electronic codebook) is suitable for random data, such as encrypting other keys. Since data there is short and random, the disadvantages of ECB have a favorable negative effect. MCRYPT_MODE_CBC (cipher block chaining) is especially suitable for encrypting files where the security is increased over ECB significantly. MCRYPT_MODE_CFB (cipher feedback) is the best mode for encrypting byte streams where single bytes must be encrypted. MCRYPT_MODE_OFB (output feedback, in 8bit) is comparable to CFB, but can be used in applications where error propagation cannot be tolerated. It's insecure (because it operates in 8bit mode) so it is not recommended to use it. MCRYPT_MODE_NOFB (output feedback, in nbit) is comparable to OFB, but more secure because it operates on the block size of the algorithm. MCRYPT_MODE_STREAM is an extra mode to include some stream algorithms like "WAKE" or "RC4".

11 Mcrypt_encrypt cipher
One of the MCRYPT_ciphername constants, or the name of the algorithm as string. key The key with which the data will be encrypted. If the provided key size is not supported by the cipher, the function will emit a warning and return FALSE data The data that will be encrypted with the given cipher and mode. If the size of the data is not n * blocksize, the data will be padded with '\0'. The returned crypttext can be larger than the size of the data that was given by data. mode One of the MCRYPT_MODE_modename constants, or one of the following strings: "ecb", "cbc", "cfb", "ofb", "nofb" or "stream". iv Used for the initialization in CBC, CFB, OFB modes, and in some algorithms in STREAM mode. If the provided IV size is not supported by the chaining mode or no IV was provided, but the chaining mode requires one, the function will emit a warning and return FALSE.

12 Mcrypt_encrypt mcrypt_encrypt( MCRYPT_RIJNDAEL_256, $data , $key ,
MCRYPT_MODE_ECB, mcrypt_create_iv( mcrypt_get_iv_size( MCRYPT_MODE_ECB ), MCRYPT_RAND) )

13 Mcrypt ciphers MCRYPT_3DES
◦MCRYPT_ARCFOUR_IV (libmcrypt > 2.4.x only) ◦MCRYPT_ARCFOUR (libmcrypt > 2.4.x only) ◦MCRYPT_BLOWFISH ◦MCRYPT_CAST_128 ◦MCRYPT_CAST_256 ◦MCRYPT_CRYPT ◦MCRYPT_DES ◦MCRYPT_DES_COMPAT (libmcrypt 2.2.x only) ◦MCRYPT_ENIGMA (libmcrypt > 2.4.x only, alias for MCRYPT_CRYPT) ◦MCRYPT_GOST ◦MCRYPT_IDEA (non-free) ◦MCRYPT_LOKI97 (libmcrypt > 2.4.x only) ◦MCRYPT_MARS (libmcrypt > 2.4.x only, non-free) ◦MCRYPT_PANAMA (libmcrypt > 2.4.x only) ◦MCRYPT_RIJNDAEL_128 (libmcrypt > 2.4.x only) ◦MCRYPT_RIJNDAEL_192 (libmcrypt > 2.4.x only) ◦MCRYPT_RIJNDAEL_256 (libmcrypt > 2.4.x only) ◦MCRYPT_RC2 ◦MCRYPT_RC4 (libmcrypt 2.2.x only)

14 Mcrypt ciphers MCRYPT_RC6 (libmcrypt > 2.4.x only)
◦MCRYPT_SAFER64 ◦MCRYPT_SAFER128 ◦MCRYPT_SAFERPLUS (libmcrypt > 2.4.x only) ◦MCRYPT_SERPENT(libmcrypt > 2.4.x only) ◦MCRYPT_SERPENT_128 (libmcrypt 2.2.x only) ◦MCRYPT_SERPENT_192 (libmcrypt 2.2.x only) ◦MCRYPT_SERPENT_256 (libmcrypt 2.2.x only) ◦MCRYPT_SKIPJACK (libmcrypt > 2.4.x only) ◦MCRYPT_TEAN (libmcrypt 2.2.x only) ◦MCRYPT_THREEWAY ◦MCRYPT_TRIPLEDES (libmcrypt > 2.4.x only) ◦MCRYPT_TWOFISH (for older mcrypt 2.x versions, or mcrypt > 2.4.x ) ◦MCRYPT_TWOFISH128 (TWOFISHxxx are available in newer 2.x versions, but not in the 2.4.x versions) ◦MCRYPT_TWOFISH192 ◦MCRYPT_TWOFISH256 ◦MCRYPT_WAKE (libmcrypt > 2.4.x only) ◦MCRYPT_XTEA (libmcrypt > 2.4.x only)

15 Example Example #1 Encrypt an input value with AES with a 256-bit key under 2.4.x and higher in CBC mode <?php     $key = hash('sha256', 'this is a secret key', true);     $input = "Let us meet at 9 o'clock at the secret place.";          $td = mcrypt_module_open('rijndael-128', '', 'cbc', '');     $iv = mcrypt_create_iv(mcrypt_enc_get_iv_size($td), MCRYPT_DEV_URANDOM);     mcrypt_generic_init($td, $key, $iv);     $encrypted_data = mcrypt_generic($td, $input);     mcrypt_generic_deinit($td);     mcrypt_module_close($td); ?>

16 Mcrypt Functions mcrypt_cbc — Encrypts/decrypts data in CBC mode
mcrypt_cfb — Encrypts/decrypts data in CFB mode mcrypt_create_iv — Creates an initialization vector (IV) from a random source mcrypt_decrypt — Decrypts crypttext with given parameters mcrypt_ecb — Deprecated: Encrypts/decrypts data in ECB mode mcrypt_enc_get_algorithms_name — Returns the name of the opened algorithm mcrypt_enc_get_block_size — Returns the blocksize of the opened algorithm mcrypt_enc_get_iv_size — Returns the size of the IV of the opened algorithm mcrypt_enc_get_key_size — Returns the maximum supported keysize of the opened mode mcrypt_enc_get_modes_name — Returns the name of the opened mode mcrypt_enc_get_supported_key_sizes — Returns an array with the supported keysizes of the opened algorithm mcrypt_enc_is_block_algorithm_mode — Checks whether the encryption of the opened mode works on blocks mcrypt_enc_is_block_algorithm — Checks whether the algorithm of the opened mode is a block algorithm mcrypt_enc_is_block_mode — Checks whether the opened mode outputs blocks mcrypt_enc_self_test — Runs a self test on the opened module mcrypt_encrypt — Encrypts plaintext with given parameters

17 Mcrypt Functions mcrypt_generic_deinit — This function deinitializes an encryption module mcrypt_generic_end — This function terminates encryption mcrypt_generic_init — This function initializes all buffers needed for encryption mcrypt_generic — This function encrypts data mcrypt_get_block_size — Gets the block size of the specified cipher mcrypt_get_cipher_name — Gets the name of the specified cipher mcrypt_get_iv_size — Returns the size of the IV belonging to a specific cipher/mode combination mcrypt_get_key_size — Gets the key size of the specified cipher mcrypt_list_algorithms — Gets an array of all supported ciphers mcrypt_list_modes — Gets an array of all supported modes mcrypt_module_close — Closes the mcrypt module mcrypt_module_get_algo_block_size — Returns the blocksize of the specified algorithm mcrypt_module_get_algo_key_size — Returns the maximum supported keysize of the opened mode mcrypt_module_get_supported_key_sizes — Returns an array with the supported keysizes of the opened algorithm mcrypt_module_is_block_algorithm_mode — Returns if the specified module is a block algorithm or not mcrypt_module_is_block_algorithm — This function checks whether the specified algorithm is a block algorithm mcrypt_module_is_block_mode — Returns if the specified mode outputs blocks or not mcrypt_module_open — Opens the module of the algorithm and the mode to be used mcrypt_module_self_test — This function runs a self test on the specified module mcrypt_ofb — Encrypts/decrypts data in OFB mode mdecrypt_generic — Decrypts data

18 Example function encrypt($sValue, $sSecretKey) { return rtrim(
base64_encode( mcrypt_encrypt( MCRYPT_RIJNDAEL_256, $sSecretKey, $sValue, MCRYPT_MODE_ECB, mcrypt_create_iv( mcrypt_get_iv_size( MCRYPT_MODE_ECB ), MCRYPT_RAND) ) ), "\0" ); }

19 Example (cont) function decrypt($sValue, $sSecretKey) { return rtrim(
mcrypt_decrypt( MCRYPT_RIJNDAEL_256, $sSecretKey, base64_decode($sValue), MCRYPT_MODE_ECB, mcrypt_create_iv( mcrypt_get_iv_size( MCRYPT_MODE_ECB ), MCRYPT_RAND ) ), "\0" ); }

20 Mcrypt Functions

21 Opdracht Maak in php een formulier waarmee je een tekst kunt invoeren waarna de tekst op te slaan is in een bestand. Maak ook een knop waarmee je een bestand kunt inlezen in het formulier.

Download ppt "Encryptie 1 maart 2016."

Similar presentations

Block Cipher Modes of Operation and Stream Ciphers

Block Cipher Modes of Operation and Stream Ciphers
“Advanced Encryption Standard” & “Modes of Operation”

“Advanced Encryption Standard” & “Modes of Operation”
Encipherment Using Modern Symmetric-Key Ciphers. 8.2 Objectives ❏ To show how modern standard ciphers, such as DES or AES, can be used to encipher long.

Encipherment Using Modern Symmetric-Key Ciphers. 8.2 Objectives ❏ To show how modern standard ciphers, such as DES or AES, can be used to encipher long.
Modern Symmetric-Key Ciphers

Modern Symmetric-Key Ciphers
Modern Symmetric-Key Ciphers

Modern Symmetric-Key Ciphers
CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (3) Information Security.

CS 483 – SD SECTION BY DR. DANIYAL ALGHAZZAWI (3) Information Security.
ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.

ECE454/CS594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall 2011.
Cryptography & Security Presented April 16, 2010 By Dave Stycos, Zocalo Data Systems.

Cryptography & Security Presented April 16, 2010 By Dave Stycos, Zocalo Data Systems.
Web Security for Network and System Administrators1 Chapter 4 Encryption.

Web Security for Network and System Administrators1 Chapter 4 Encryption.
Cryptography1 CPSC 3730 Cryptography Chapter 6 Triple DES, Block Cipher Modes of Operation.

Cryptography1 CPSC 3730 Cryptography Chapter 6 Triple DES, Block Cipher Modes of Operation.
Chapter 5 Cryptography Protecting principals communication in systems.

Chapter 5 Cryptography Protecting principals communication in systems.
Modes of Operation CS 795. Electronic Code Book (ECB) Each block of the message is encrypted with the same secret key Problems: If two identical blocks.

Modes of Operation CS 795. Electronic Code Book (ECB) Each block of the message is encrypted with the same secret key Problems: If two identical blocks.
15-441 Computer Networking Lecture 21: Security and Cryptography Thanks to various folks from 15-441, semester’s past and others.

Computer Networking Lecture 21: Security and Cryptography Thanks to various folks from , semester’s past and others.
Cryptography April 20, 2010 MIS 4600 – MBA 5880 - © Abdou Illia.

Cryptography April 20, 2010 MIS 4600 – MBA © Abdou Illia.
Hash Functions Nathanael Paul Oct. 9, 2002. Hash Functions: Introduction Cryptographic hash functions –Input – any length –Output – fixed length –H(x)

Hash Functions Nathanael Paul Oct. 9, Hash Functions: Introduction Cryptographic hash functions –Input – any length –Output – fixed length –H(x)
Lecture 23 Symmetric Encryption

Lecture 23 Symmetric Encryption
Feb 19, 2002Mårten Trolin1 Previous lecture Practical things about the course. Example of cryptosystem — substitution cipher. Symmetric vs. asymmetric.

Feb 19, 2002Mårten Trolin1 Previous lecture Practical things about the course. Example of cryptosystem — substitution cipher. Symmetric vs. asymmetric.
CS470, A.SelcukModes of Operation1 Encrypting with Block Ciphers CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukModes of Operation1 Encrypting with Block Ciphers CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
Encryption Schemes Second Pass Brice Toth 21 November 2001.

Encryption Schemes Second Pass Brice Toth 21 November 2001.
1 Chapter 4 Encryption. 2 Objectives In this chapter, you will: Learn the basics of encryption technology Recognize popular symmetric encryption algorithms.

1 Chapter 4 Encryption. 2 Objectives In this chapter, you will: Learn the basics of encryption technology Recognize popular symmetric encryption algorithms.

Similar presentations

Ads by Google