PHP Classes

TA_OpenSSL: Encrypts and decrypts data using certificates

Recommend this page to a friend!
  Info   View files View files (8)   DownloadInstall with Composer Download .zip   Reputation   Support forum   Blog    
Ratings Unique User Downloads Download Rankings
Not enough user ratingsTotal: 2,042 This week: 1All time: 1,924 This week: 560Up
Version License Categories
ta_openssl 1.0.0GNU General Publi...Networking, Cryptography
Description 

Author

This class encrypts and decrypts data using RSA certificates and the openssl extension.

It can verify the resulting data after encrypting to ensure proper recovery.

It supports error handling and localization to present the class messages in different idioms.

Ihis package includes test public and private key files along with instructions on how to create your own key files.

Picture of Ricky Robinson
Name: Ricky Robinson <contact>
Classes: 3 packages by
Country: United States United States
Age: 60
All time rank: 53770 in United States United States
Week rank: 411 Up48 in United States United States Up

Details

TA_OpenSSL Encrypts and Decrypts using the PHP OpenSSL extension and the RSA Algorithm. The only one php supports as of 4.3.3 Quick Instructions: Download the tar.gz file Extract all files to same directory in a web folder Navigate to the openssl_test.html page Copyright (C) 2003 Terra Access This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA A quick note: I also have a derived class that is able to encrypt large data sources. I haven't fully test it yet so I didn't release it here. If anyone is interested in obtaining a copy email me at dev@terraaccess.com and I will email you a copy. * Requires: OpenSSL Extension Installed and working * PHP 4.1 or higher ( Tested on 4.3.1, 4.1.2, 4.3.3 ) * Localization File: english_encrypt.php or translated file * RSA Certificate and Key File * Note: I included a public and private key with this * distribution. The passphrase is 'testing' * * Private Key File: privkey_test.pem * Public Key File: cacert_test.pem * * Localization Note: * I've also made it compatible with localization. The english version * is in file english_encrypt.php. To use other languages just save the * english_encrypt.php file as [language]_encrypt.php. Translate the defines * to the language of choice and change the require_once at the top of the class page. * If you do we would appreciate it if you emailed us a copy of the new translation. * Thanks <dev@terraaccess.com> * * *If you don't want to use the included keys... * Creating a Private Key: * openssl genrsa -des3 -out privkey.pem 2048 * Note: this was taken straight from http://www.openssl.org/docs/HOWTO/keys.txt * to create a key file without a passphrase remove the -des3 param * Key Size: In the above example the key size is 2048 bits. The size of your data * to encrypt is limited by this number. You can only encrypt data of the * length: * bytes - 11 * 2048 bits / 8 bits per byte = 256 bytes * 256 - 11 = 245 byte Maximum size of data to encrypt * * Creating a Certificate (Public Key): * openssl req -new -x509 -key privkey.pem -out cacert.pem -days 1095 * Note: this was taken straight from http://www.openssl.org/docs/HOWTO/certificates.txt * SECURITY NOTES: You should keep your private key just that private. If you use a passphrase when creating your private key noone can retrieve your data using the private key without the proper passphrase. I am open to suggestions from anyone on the most reliable way to accomplish this. Steps to Using Class: 1. Include the class file in your source 2. Create an instance of the class 3. Set the public key path 4. Set the private key path 5. Set the passphrase ( set to "" if passphrase not used in key generation) 6. To Encrypt: a. Call encrypt_data_public() to encrypt b. Call get_encrypted_data() to retrieve data 7. To Decrypt: a. Call decrypt_data_private b. Call get_decrypted_data() to retrieve data See openssl_test.php for commented example EXAMPLE CODE RESOURCE: This is the example code that I used to write this class. I retrieved it from the following page... http://si.php.net:8888/manual/en/function.openssl-public-encrypt.php webmaster@costarica-travelinfo.com <?php //STEP 1: Encryption with Public Key (you will need Private Key to decrypt - see step2) $string="Some Important Data"; $fp=fopen ("cert.pem","r"); $pub_key=fread ($fp,8192); fclose($fp); $PK=""; $PK=openssl_get_publickey($pub_key); if (!$PK) { echo "Cannot get public key"; } $finaltext=""; openssl_public_encrypt($string,$finaltext,$PK); if (!empty($finaltext)) { openssl_free_key($PK); echo "Encryption OK!"; }else{ echo "Cannot Encrypt"; } // STEP 2: Decription (Using Private Key) $fp=fopen ("pk.pem","r"); $priv_key2=fread ($fp,8192); fclose($fp); $PK2=openssl_get_privatekey($priv_key2); $Crypted=openssl_private_decrypt($Data,$Decrypted,$PK2); if (!$Crypted) { $MSG.="<p class='error'>Cannot Decrypt ($CCID).</p>"; }else{ echo "Decrypted Data: " . $Decrypted; } ?>

  Files folder image Files  
File Role Description
Accessible without login Plain text file cacert_test.pem Data Test Public Key File
Accessible without login Plain text file english_encrypt.php Aux. English Localization Translation
Accessible without login HTML file openssl_test.html Example Test HTML Submission Form
Accessible without login Plain text file openssl_test.php Example Test PHP CGI Script
Accessible without login HTML file openssl_test_header.html Data output header
Accessible without login Plain text file privkey_test.pem Data Test Private Key File
Accessible without login Plain text file README_ENCRYPT.txt Doc. Documentation File
Plain text file ta_encrypt.inc Class Encrypts and Decrypts data using the OpenSSL extension

 Version Control Unique User Downloads Download Rankings  
 0%
Total:2,042
This week:1
All time:1,924
This week:560Up