Category: cryptography

Day Camp 4 Developers: PHP Application Security

Application security is on everybody’s mind these days. Every day we hear of another site hacked or another data breach. Does your team do everything it can to keep your site secure and your data safe? Day Camp 4 Developers is a semi-regular online meetup of developers who want to teach people things that don’...

What Would You Pay to Make 27% of the Web More Secure?

It’s Open Source Week at SitePoint! All week we’re publishing articles focused on everything Open Source, Free Software and Community, so keep checking the OSW tag for the latest updates. Scott Arciszewski, known on Twitter as CiPHPerCoder, is to security what Chris Hartjes is to unit testing. He’ll pounce on...

Using Halite for Privacy and Two-Way Encryption of Emails

Cryptography is a complex matter. In fact, there is one golden rule: * Don’t implement cryptography yourself * The reason for this is that so many things can go wrong while implementing it, the slightest error can generate a vulnerability and if you look away, your precious data can be read by someone else. Whi...

Randomness in PHP – Do You Feel Lucky?

This article analyzes problems related to random number generation used for cryptography purposes. PHP 5 does not provide an easy mechanism for generating cryptographically strong random numbers, while PHP 7 solves this by introducing a couple of CSPRNG functions. What is a CSPRNG? Quoting Wikipedia, a Cryptographic...