Cryptography is a complex and confusing subject. There seems to be more misinformation than actual information. Learn how to properly use cryptography to secure user credentials and sensitive data. We will discuss cryptographic methodologies and algorithms available to PHP. The focus will be on encryption, digital signatures, and hashing. We will discuss methodologies as part of a compare and contrast; based on cryptography strength and randomness.

1. @adam_englander
Tales From the Crypto
A Cryptography Primer

2. @adam_englander
Who Am I?

3. @adam_englander
We are going to talk about the common
methods and terms used for
cryptography in application development

4. @adam_englander
What is Cryptography?

5. @adam_englander
Cryptography…is the practice and study of
techniques for secure communication in the
presence of third parties called adversaries.
Wikipedia

6. @adam_englander
Cryptography obscures data in
such a way that it is costly to
duplicate or difficult to reverse.

7. @adam_englander
Good cryptography makes it
extremely difficult to identify patterns
in the obscured data.

8. @adam_englander
Type of Cryptography We Will Cover
• Encryption/Decryption
• Digital Signatures
• Hashing

9. @adam_englander
Encryption

10. @adam_englander
Encrypting data ensures only
certain parties can read it.

11. @adam_englander
Encrypted data can be
decrypted.

12. @adam_englander
Encryption uses mathematical
algorithms called ciphers.

13. @adam_englander
The ciphers use secrets called
cipher keys.

14. @adam_englander
Cipher keys can be symmetric
(shared secrets) or asymmetric
(public key cryptography).

15. @adam_englander
Symmetric Key Encryption

16. @adam_englander
Symmetric key encryption applies
ciphers against data producing a
cipher text.

17. @adam_englander
There are two types of symmetric
key ciphers:
stream and block.

18. @adam_englander
Stream ciphers use a cipher key
with a cryptographically secure
pseudorandom cipher digit
stream called a keystream to
product the cipher text.

19. @adam_englander
Cryptographically secure
pseudorandom values are
issued to be random enough not
to generate distinguishable
patterns.

20. @adam_englander
Block ciphers execute against a
fixed length group of bits.

21. @adam_englander
Cipher Block Execution Modes

22. @adam_englander
Electronic Cookbook (ECB)

23. @adam_englander
DO NOT USE ECB!

24. @adam_englander
Electronic cookbook encrypts
each block separately.

25. @adam_englander

26. @adam_englander
It is not secure as patterns are
created from the same data resulting
in the same cipher text.

27. @adam_englander
If you manage to decrypt one block
of the cipher text, you can now
decrypt all of the others.

28. @adam_englander
Plain ECB CBC
Mode Comparison
Tux the Penguin, the Linux mascot. Created in 1996 by Larry Ewing with The GIMP.

29. @adam_englander
DO NOT USE ECB!

30. @adam_englander
Block Chain and Feedback
Modes: CBC, CFB, and OFB

31. @adam_englander
All use an initialization vector (IV) to
provide the chain/feedback on the
first block.

32. @adam_englander
All base the cipher value of the
current block on some portion of
the previous block.

33. @adam_englander

34. @adam_englander

35. @adam_englander

36. @adam_englander
Unless you have a specific use
case, use CBC.

37. @adam_englander
Use PKCS7 padding as it is secure
and has the widest compatibility.

38. @adam_englander
Asymmetric Key Encryption:
Public Key Cryptography

39. @adam_englander
Public Key Cryptography use
key pairs, public/private.

40. @adam_englander
Public keys can be
disseminated to anyone.

41. @adam_englander
Public keys can encrypt data
but cannot decrypt the data it
encrypts.

42. @adam_englander
Private keys are secret.

43. @adam_englander
Public keys can encrypt and
decrypt data.

44. @adam_englander
Public Key Cryptography
Implementations

45. @adam_englander
RSA is the only form available in
PHP.

46. @adam_englander
RSA encryption is
computationally expensive
using very large prime integers
and exponential computation.

47. @adam_englander
RSA encryption is limited to the
amount of data it can encrypt
based on the size of the private
key.

48. @adam_englander
RSA encryption is often used to
exchange secret keys for
symmetric key encryption.

49. @adam_englander
The Diffie/Hellmen key exchange
in SSL/TLS is a great example.

50. @adam_englander
Diffie-Hellman Key
Exchange
The “Common Paint” is a random
number generated on the client and
encrypted with the public key from the
server. It is transmitted to the server and
decrypted using the private key. They
negotiate a shared secret and then
utilize symmetric key encryption with
that secret to communicate further.

51. @adam_englander
Always use PKCS1 OAEP Padding.
PKCS#1 v1.5 is the PHP default but
must not be used.

52. @adam_englander
Hashing

53. @adam_englander
Hashes can not be reversed. They
can only be recreated and verified.

54. @adam_englander
Hashing data is used to verify
the integrity of data or store the
data obscured.

55. @adam_englander
Electronic Signatures

56. @adam_englander
Hashes are used in conjunction with
secrets to create electronic
signatures.

57. @adam_englander
Symmetric Key Signatures

58. @adam_englander
Symmetric key signatures are known
as a Hash-based Message
Authentication Code or HMAC

59. @adam_englander
HMACs use a hashing algorithm in
combination with a shared secret to
generate a verifiable hash.

60. @adam_englander
The minimum hashing algorithm for
an HMAC is SHA-1. SHA-256 or
better is preferred.

61. @adam_englander
Key size determines the
cryptographic strength of the
signature.

62. @adam_englander
Asymmetric Key Signatures

63. @adam_englander
The private key is used to sign
the data.

64. @adam_englander
The public key is used to verify
the signature.

65. @adam_englander
RSA is the only asymmetric key
signature available in PHP.

66. @adam_englander
The amount of data RSA can sign is
based on the size of the private key.

67. @adam_englander
RSA uses hashing algorithms for
data larger than the key allows.

68. @adam_englander
SHA1 is the “suggested” minimum
hashing algorithm for RSA.

69. @adam_englander
Password Hashing

70. @adam_englander
Hashes are used for passwords
or any value that will be
presented for verification.

71. @adam_englander
Proper password hashing is done
via a Key Derivation Function (KDF).

72. @adam_englander
Never use a standard hashing
algorithm for passwords EVER!

73. @adam_englander
Key derivation functions use a “salt”
to create differentiation for the same
password.

74. @adam_englander
Key derivation functions apply the
salted hash for a defined iteration
count.

75. @adam_englander
Hashes must be cryptographically
pseudorandom and large.

76. @adam_englander
Iteration counts must be as
large as can be tolerated.

77. @adam_englander
HASH UNTIL IT HURTS!

78. @adam_englander
PHP provides PBKDF2 and
BCRYPT for password hashing.

79. @adam_englander
It also provides convenience functions:
http://php.net/manual/en/
ref.password.php

80. @adam_englander
Suggestions

81. @adam_englander
Encrypt all data that is secret or
private.

82. @adam_englander
Sign all significant data in
transit.

83. @adam_englander
Use the strongest encryption
you can support.

84. @adam_englander
Do NOT use rand() or mt_rand()
to generate keys or IVs. Use
Use random_bytes().
paragonie/random_compat is a
PHP 5.x polyfill.

85. @adam_englander
Use the OpenSSL extension for
everything but password hashing

86. @adam_englander
If you are writing a library, you
can use phpseclib/phpseclib as
an abstraction layer to
OpenSSL, MCrypt, or no crypto
extensions installed.

87. @adam_englander
Use
OPENSSL_PKCS1_OAEP_PADDING
for RSA encryption and
OPENSSL_ALGO_SHA256/384/512 for
signatures

88. @adam_englander
Use aes-256-cbc for symmetric
key encryption and
aes-256-cbc-hmac-sha256 for
symmetric key signatures

89. @adam_englander
Use built in password hashing
functions to do it right.

90. @adam_englander
Use a large number of iterations.
Shoot for at least 500ms of hashing.

91. @adam_englander
Further Reading
• http://php.net/manual/en/book.openssl.php
• http://php.net/manual/en/function.password-hash.php
• http://php.net/manual/en/book.csprng.php
• https://github.com/phpseclib/phpseclib
• Wikipedia

92. @adam_englander
Please Rate This Talk
https://joind.in/talk/6ef69

93. @adam_englander
20162016