(PHP Extension) PBES1 Password-Based Encryption (PBE)

Demonstrates how to implement password-based encryption according to the PKCS #5 v2.0: Password-Based Cryptography Standard (published by RSA Laboratories). This example uses PBES1, which ise based on the PBKDF1 function and an underlying block cipher such as RC2, DES, etc.

Chilkat PHP Downloads PHP Extension for Windows, Linux, MacOS, Alpine Linux, Solaris

<?php

// The version number (9_5_0) should match version of the Chilkat extension used, omitting the micro-version number.
// For example, if using Chilkat v9.5.0.48, then include as shown here:
include("chilkat_9_5_0.php");

// This example assumes the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

$crypt = new CkCrypt2();

// Set properties for PBES1 encryption:

$crypt->put_CryptAlgorithm('pbes1');
$crypt->put_PbesPassword('mySecretPassword');

// Set the underlying PBE algorithm (and key length):
// For PBES1, the underlying algorithm must be either
// 56-bit DES or 64-bit RC2 
// (this is according to the PKCS#5 specifications at
// http://www.rsa.com/rsalabs/node.asp?id=2127   )
$crypt->put_PbesAlgorithm('rc2');
$crypt->put_KeyLength(64);

// The salt for PBKDF1 is always 8 bytes:
$crypt->SetEncodedSalt('0102030405060708','hex');

// A higher iteration count makes the algorithm more
// computationally expensive and therefore exhaustive
// searches (for breaking the encryption) is more difficult:
$crypt->put_IterationCount(1024);

// A hash algorithm needs to be set for PBES1:
$crypt->put_HashAlgorithm('sha1');

// Indicate that the encrypted bytes should be returned
// as a hex string:
$crypt->put_EncodingMode('hex');

$plainText = 'To be encrypted.';

$encryptedText = $crypt->encryptStringENC($plainText);

print $encryptedText . "\n";

// Now decrypt:
$decryptedText = $crypt->decryptStringENC($encryptedText);

print $decryptedText . "\n";

?>