发表新帖
发表新帖

Encrypting (large) files in PHP with openSSL

前端 未结
关注
4 1708
再見小時候
再見小時候 2020-12-11 06:30

I\'m trying to encrypt (big) files in PHP using AES and have looked into using Mcrypt and OpenSSL, the problem is all solutions I have found so far only encrypt strings, and

相关标签:
4条回答
  • 被撕碎了的回忆
    2020-12-11 06:34

    I have published two functions which encrypt and decrypt even large files with the help of openssl_encrypt() using the AES-128-CBC algorithm.

    Please refer to this openssl_encrypt().

    0 讨论(0)
  • 庸人自扰
    2020-12-11 06:37

    You could use CBC encryption using Mcrypt and then encrypt a segment of data at a time. Make sure that the segment is x times the block size of the used cipher (e.g. 16 bytes for AES). Encrypt the segment and take the last block of the generated ciphertext and use it as IV for the next segment. The final segment should be PKCS#7 padded (plenty of examples out there including in the mcrypt_encrypt comments).

    By chaining the segments together you get a ciphertext indistinguishable from a single encrypt (test your code using this information). Decryption is identical, using the ciphertext as IV. To see how it works, look at the CBC encryption method:

    enter image description here

    EDIT: if possible you should use the OpenSSL equivalent functionality. That's not (well) documented, but you should be able to do the same using the code found in the link within the comment that Scott mentioned. Note that you should first perform everything without padding, and then for the final segment with padding.

    0 讨论(0)
  • 鱼传尺愫
    2020-12-11 06:46

    Using SSL on your website would take care of it for you. Any files that are transmitted are encrypted by the client browser, and server using the HTTPS protocol.

    As far as storing the encrypted versions of the files I would not recommend.

    0 讨论(0)
  • 臣服心动
    2020-12-11 06:53

    http://www.shellhacks.com/en/Encrypt-And-Decrypt-Files-With-A-Password-Using-OpenSSL

    $ openssl enc -aes-256-cbc -salt -in file.txt -out file.txt.enc

    to not use too much memory, you want a stream cipher. Call this in PHP with backticks `

    or with shell_exec

    Edit

    As shell exec is not available

    http://jeremycook.ca/2011/03/20/easy-file-encryption/

    There is a solution there. Though and I can't stress this enough. Stream ciphers are hard I have not reviewed the code there fully nor do I think I am capable. Using open SSL directly is a much better option

    http://php.net/manual/en/filters.encryption.php

    Is the example code

    0 讨论(0)
 看不清?
提交回复
热议问题