Diese Seite bei php.net
The PHP manual text and comments are covered by the Creative Commons Attribution 3.0 License © the PHP Documentation Group - Impressum - mail("TO:Reinhard Neidl",...)
(PHP 5 >= 5.3.0)
openssl_encrypt — Encrypts data
Encrypts given data with given method and key, returns a raw or base64 encoded string
Diese Funktion ist bis jetzt nicht dokumentiert. Es steht nur die Liste der Argumente zur Verfügung.
The data.
The cipher method.
The password.
Setting to TRUE will return as raw output data, otherwise the return value is base64 encoded.
Returns the encrypted string on successIm Fehlerfall wird FALSE zurückgegeben..
Emits an E_WARNING level error if an unknown cipher algorithm is passed in via the method parameter.
In 5.3.3 they added a new parameter, string $iv (initialization vector)
Real parameters are:
string openssl_encrypt ( string $data , string $method , string $password, bool $raw_output = false, string $iv )
If $iv is missing, a warning is issued: "Using an empty Initialization Vector (iv) is potentially insecure and not recommended".
If $iv is too short, another warning:
"IV passed is only 3 bytes long, cipher expects an IV of precisely 8 bytes, padding with \0"
same IV should be used in openssl_decrypt()
The list of methods for this function can be obtained with openssl_get_cipher_methods();
The password can be encrypted with the openssl_private/public_encrypt()
Diese Seite bei php.net