encrypt and decrypt?

searain

How can I encrypt some sensive information and save them in the database?

And also read from the database, decrypt them?

I need two-way encrypt/decrypt solutions.

Plus, if there is a such solution. Can I recreate the encrypt/decrypt (in online php pages) tool for the offline usage, such as in Excel and Access? So the offline copy of the database is also decryptable?

pyro

Try taking a look at mcrypt.

drawmack

I could write this tool for you, but not for free.

Look up RSA on google.

stevesweetland

all you need to do is (if you can use mcrypt)

function encrypt($input,$key){
  $iv = mcrypt_create_iv (mcrypt_get_iv_size (blowfish, MCRYPT_MODE_ECB), MCRYPT_RAND);
  $encrypted = mcrypt_encrypt (ENC_ALGORITHM_HERE, $key, $input, MCRYPT_MODE_ECB, $iv);
  $encrypted = base64_encode($encrypted);
  return $encrypted;
}

function decrypt($input,$key){
  $decrypted = base64_decode($input);
  $iv = mcrypt_create_iv (mcrypt_get_iv_size (blowfish, MCRYPT_MODE_ECB), MCRYPT_RAND);
  $decrypted = mcrypt_decrypt (ENC_ALGORITHM_HERE, $key, $decrypted, MCRYPT_MODE_ECB, $iv);
  return $decrypted;
}

subsititute ENC_ALGORITHM_HERE for your favourite two-way algorithm.
$key is a universal encryption key. the string will only decrypt if you supply the correct key.

look on google for a visual basic based decryption tool, and just make a little prog to decrypt strings (same cipher as the php functions, of course). if you're that worried about it, anyway.

ukndoit

look on google for a visual basic based decryption tool, and just make a little prog to decrypt strings (same cipher as the php functions, of course). if you're that worried about it, anyway.

So, if I have a PHP file that is encrypted with mcrypt(), and I cannot remember where I put any "$key", is there a way I can decrypt it, or must I re-write the functions in that "encrypted" data?

Thank you,
Richard

Originally posted by stevesweetland
all you need to do is (if you can use mcrypt)
function encrypt($input,$key){
  $iv = mcrypt_create_iv (mcrypt_get_iv_size (blowfish, MCRYPT_MODE_ECB), MCRYPT_RAND);
  $encrypted = mcrypt_encrypt (ENC_ALGORITHM_HERE, $key, $input, MCRYPT_MODE_ECB, $iv);
  $encrypted = base64_encode($encrypted);
  return $encrypted;
}

function decrypt($input,$key){
  $decrypted = base64_decode($input);
  $iv = mcrypt_create_iv (mcrypt_get_iv_size (blowfish, MCRYPT_MODE_ECB), MCRYPT_RAND);
  $decrypted = mcrypt_decrypt (ENC_ALGORITHM_HERE, $key, $decrypted, MCRYPT_MODE_ECB, $iv);
  return $decrypted;
}
subsititute ENC_ALGORITHM_HERE for your favourite two-way algorithm.
$key is a universal encryption key. the string will only decrypt if you supply the correct key.

look on google for a visual basic based decryption tool, and just make a little prog to decrypt strings (same cipher as the php functions, of course). if you're that worried about it, anyway. [/B]

freebie

If you are using a MySQL database, you can use the database functions such as AES_ENCRYPT and AES_DECRYPT to encrypt and decrypt any sensitive information. Make sure your columns for these are Text not varchar.

Weedpacket

Originally posted by ukndoit
So, if I have a PHP file that is encrypted with mcrypt(), and I cannot remember where I put any "$key", is there a way I can decrypt it, or must I re-write the functions in that "encrypted" data?

Thank you,
Richard

Well, if you could decrypt the data without the $key, so could anyone else, and where's the security in that?