Encryption

berbbrown

I have a database full of sensitive data and I wish to ensure that the data is encrypted so that should anyone manage to extract it they would not be able to do so.

Can someone advise on the best form of encryption that I could use via PHP please?

I have admin interface which will obviously need to decrypt before displaying to the screen. Also can the encryption be used to encrypt images which are also stored in the database.

Thanks in advance.

Regards

olaf

transfer data via SSL

cyberlew15

okay SSL is not encrypting the database layer it's a sup[posedly more secure way of handling the data suitable for file transactions strange as this may sound you can run through php or a shell script a encryption algorithm which works by having character list where maybe 10 characters like for instance ("a","b","c","d","e","f","g","h","i","j") would be in an array and would be scrambled into a numerical sequence by creating another array to replace them with also containing 10 characters. this way part of the data is encrypted and part of the data is unencrypted. these are very hard to crack because they would need to know essentially what was encrypted and what was not. however this will take up valuable resources as does any compression whereas using an SSL connection you do not need to have any resource drain

olaf

cyberlew15 wrote:
okay SSL is not encrypting the database layer it's a sup[posedly more secure way of handling the data suitable for file transactions strange as this may sound you can run through php or a shell script a encryption algorithm which works by having character list where maybe 10 characters like for instance ("a","b","c","d","e","f","g","h","i","j") would be in an array and would be scrambled into a numerical sequence by creating another array to replace them with also containing 10 characters. this way part of the data is encrypted and part of the data is unencrypted. these are very hard to crack because they would need to know essentially what was encrypted and what was not. however this will take up valuable resources as does any compression whereas using an SSL connection you do not need to have any resource drain

You're right SSL will not encrypt the data but will transport the data for safe. It looks not like that he need an encrytion for all data, maybe for a part of the data.

Kudose

Write your own encryption/decryption algorithm. There are lots of tutorials out there...

toplay

Use the mcrypt library of functions available for encryption and decryption:
http://us3.php.net/manual/en/ref.mcrypt.php

Example:

<?PHP
define('MY_KEY', 'A very secret key');

//Encryption
function encrypt($input, &$iv)  // Pass IV by reference
{

$td = mcrypt_module_open(MCRYPT_3DES, '', MCRYPT_MODE_ECB, '');
$iv = mcrypt_create_iv (mcrypt_enc_get_iv_size($td), MCRYPT_RAND);
mcrypt_generic_init($td, MY_KEY, $iv);
$encrypted_data = mcrypt_generic($td, $input);
mcrypt_generic_deinit($td);
mcrypt_module_close($td);

$iv = trim(base64_encode($iv));
return trim(base64_encode($encrypted_data));
}

//Decryption
function decrypt($input, $iv)
{
$input = base64_decode($input);
$iv = base64_decode($iv);

$td = mcrypt_module_open(MCRYPT_3DES, '', MCRYPT_MODE_ECB, '');
mcrypt_generic_init($td, MY_KEY, $iv);
$decrypt = trim(mdecrypt_generic($td, $input));
mcrypt_generic_deinit($td);
mcrypt_module_close($td);
return $decrypt;
}

$data = 'Hello World!';
echo "Original data: $data <br>";

$IV = '';
$encrypted = encrypt($data, $IV);
// Save $encrypted and $IV values in file/DB.
echo "encrypted: $encrypted <br>";
echo "IV: $IV <br>";

// Retrieve values from file/DB and place in $encrypted and $IV
$unencrypted = decrypt($encrypted, $IV);
echo "decrypted data: $unencrypted <br>";
?>

Example of output:

Original data: Hello World!
encrypted: zZh/1vef0sS6Y+YyAsSmxQ==
IV: 5Fl6lc4xjwA=
decrypted data: Hello World!

Also, there's a PEAR blowfish encryption and decryption function that doesn't require the mcrypt library - see my post for the link to the class:
http://www.phpbuilder.com/board/showpost.php?p=10651372&postcount=16

When user has to enter personal or sensitive information, use SSL.

hth.

cyberlew15

yeah but using mcrypt the hello world takes up more space and it uses keys which we all know gets broken. Remember if you don't have the key resort to bruteforce and kick the door down. I've no experience of blowfish but I dont rate anything to do with PEAR.

olaf

cyberlew15 wrote:
yeah but using mcrypt the hello world takes up more space and it uses keys which we all know gets broken. Remember if you don't have the key resort to bruteforce and kick the door down. I've no experience of blowfish but I dont rate anything to do with PEAR.

Why PEAR? its a custom function using the mcrypt extension

cyberlew15

The PEAR blowfish encryption you mentioned I hate PEAR so I also hate all of it's extensions The only useful php extensions are the database extensions everything else can be exec'd through a shell script or command-line/terminal application in short dont use the php encryption functions

laserlight

encryption algorithm which works by having character list where maybe 10 characters like for instance ("a","b","c","d","e","f","g","h","i","j") would be in an array and would be scrambled into a numerical sequence by creating another array to replace them with also containing 10 characters.

You seem to be suggesting some sort of one time pad, cyberlew15, except that the way you describe it seems to suggest that the pad is repeated - after which theoretically unbreakable encryption becomes theoretical and practical snake oil.

these are very hard to crack because they would need to know essentially what was encrypted and what was not.

That's absurd reasoning, you know.

it uses keys which we all know gets broken

That risk always exists when one uses cryptography.

Remember if you don't have the key resort to bruteforce and kick the door down. I've no experience of blowfish

Blowfish, if correctly implemented, is strong encryption - brute force will probably be futile unless one is really lucky, so one would look for other weaknesses in the system.

The only useful php extensions are the database extensions everything else can be exec'd through a shell script or command-line/terminal application in short dont use the php encryption functions

In theory one can say that database functionality can be provided in the same way that you so readily dismiss other useful extensions.
You have not provided a sound alternative to mcrypt - if you suggested using say, gnupg from shell then perhaps there would be some basis, but your 'encryption' suggestion is misinformation.

toplay

Well, I was getting ready to reply to cyberlew15, when laserlight pretty much relayed my sentiments exactly.

I'm not too fond of PEAR either, however, to say that all the extensions are bad is a little naive.

SSL uses server resources!

The libmcrypt is the only real choice for the safest encryption techniques in PHP.

A short list of PHP encoders (to also help with somewhat hiding the key used in encryption/decryption):
http://www.phpbuilder.com/board/showpost.php?p=10646971&postcount=10

cyberlew15

think about this logically just because never did i say to encrypt the encrypted data I said to substitute certain letters for example possibly all vowels or consnants this way the database looks like gibberish. now because only you and php know this the data is rendered useless by anyone who manages to get the database. This means that without the original text nobody could crack the database. also because the letters or characters you chose to replace are your choice and this is not a common method of encryption it makes it harder for the snot nose retard brats that hack into such databases to get at your data. I happen to know this is a viable alternative because First Data International uses this method albe it a multi-pass flavour of it to protect it's mainframe backups. but I guess you can say your business uses mcrypt. just a question of taste I suppose I like my systems to work at as high a level as possible you prefer to bog yours down with shoddy third party apps and extensions

cyberlew15

Hey you waste server resources with your third party apps and extensions. I live in the real world nobody cares what is in your database you don't have norad defense codes government secrets or bill gates's credit card number if the data is that important pay someone else to data store it. I have a storage server set up with data from businesses on suppliers, credit cards, company accounts etc I don't use mcrypt on it I simply lock it out from online access. there is no reason why you should store credit card information the data protection act is very clear you must do "as much as is reasonably possible to protect sensitive data" that's legislation I'm simply pointing out that if you want to waste resources you might as well use a tried and tested method from a majour world financial organistion (First Data).

laserlight

I said to substitute certain letters for example possibly all vowels or consnants this way the database looks like gibberish

This technique might work if it were used as a form of steganography, but in this rather obvious way it may end up becoming a simple substitution cipher instead.

now because only you and php know this the data is rendered useless by anyone who manages to get the database

Now this is security by obscurity. The security lies in the secrecy of the algorithm, and while you may criticise the use of keys ("which we all know gets broken"), the chances that an algorithm will be discovered is even higher.

I happen to know this is a viable alternative because First Data International uses this method albe it a multi-pass flavour of it to protect it's mainframe backups.

Presumably they are using steganography, or their implementation is a much better one than what you described. Or in the worst case, they are doing something fundamentally insecure, so one shouldnt copy them.

just a question of taste I suppose I like my systems to work at as high a level as possible you prefer to bog yours down with shoddy third party apps and extensions

Let's face it - I dont have the expertise to create a strong encryption algorithm myself. I dont have the experience or time to properly implement strong encryption algorithms - it is difficult enough to implement secure systems using well written implementations of strong cryptosystems.

cyberlew15

security through obscurity works for Sky Digital or better known to americans and radio hams as the Astra Satellite
My point exactly we don't have time to write a security algorithm so lets just not bother
Yes it was a very basic example of what firstdata do but then again revealing more would break the trade secrets act and any confidentiality agreements(NDA's) also to post a security code which I use would inherrantly make it insecure thus rendering it useless and finally as to the security of your websites do you guys just have inflated egos is do you actually have a site worth cracking I know I certainly don't because I'm smarter than to put anything of a secure nature on such an insecure system as the internet

anyways rather than having a long drawn out argument let's accept that I think I'm right and it's highly unlikely I'll back down and You guys think your right and are just as likely not to back down it's like cristians versus muslims over who has the one true god :evilgrin:

laserlight

security through obscurity works for Sky Digital or better known to americans and radio hams as the Astra Satellite

I doubt they rely on that alone.

My point exactly we don't have time to write a security algorithm so lets just not bother

Use existing algorithms, e.g. AES and the finalists for AES. mcrypt is simply an implementation of such algorithms.

also to post a security code which I use would inherrantly make it insecure thus rendering it useless

That's not true - unless your security relies solely on the secrecy of the algorithm. You need to read about Kerckhoff's principles.

as to the security of your websites do you guys just have inflated egos is do you actually have a site worth cracking

I dont - but neither do I suggest that others use snake oil for data that they might consider valuable enough to warrant proper protection.

I know I certainly don't because I'm smarter than to put anything of a secure nature on such an insecure system as the internet

That may just mean that your needs are such that you do not need to try and transmit secure information over insecure channels. If one does happen to have such needs, then cryptography comes into play.