An Encryption, Decryption & BlindIndex Search bundle made with PHP.
The purpose of this package is to help simplify the process of Cryptography using Sodium.
The Cryptography.php file contains AEAD_XCHACHA20_POLY1305_IETF Encryption and Decryption methods capiable of cryptographically securing and decrypting a range of data types.
Additionally, the Cryptography class offers methods to hash and salt passwords using the Argon2ID algorithm.
Warning For any security issue reports, please contact the author with the processed used for vulnerabilites discovered.
Do not report elsewhere.
For all other issues with this file or bundle, please feel free to open a issue on Github or contact the author.
Created: 22 12 2021 - 01:45 GMT
Updated: 21 07 2022 - 01:51 GMT
[✔️] Symmetric Encryption
[❌] Asymmetric Encryption
[➖] Blind Index
[❌] Key Splitting
[➖] Side-Channel Attack Prevention
[✔️] Password Hashing & Salting
[➖] Unit Tests
see https://doc.libsodium.org/secret-key_cryptography/aead
- Key Size: 256 Bits
- Nonce Size: 192 Bits
- Block Size: 512 Bits
- MAC size: 128 bits
Max Bytes for a single (Key, Nonce): No Practical limits (~2^64 Bytes).
Max Bytes for a single Key: Up to 2^64* messages, no practical total size limits.
Sodium_bin2hex offers side-channel atteck attack mitigation.
see https://owasp.org/www-pdf-archive/Side_Channel_Vulnerabilities.pdf
© 2022 Grant Kellie