Home > Developer > PHP

PHP PKI encryption Technology (OpenSSL) detailed

Source: Internet
Author: User
Tags decrypt openssl sha1 hash
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >
This article is a PHP in the PKI encryption Technology (OpenSSL) for a detailed analysis of the introduction, the need for a friend reference copy code code as follows:


<?php


//PKI Encryption
//Use PKI encryption to open OpenSSL extensions


//php.ini extension = php_openssl.dll extension


/*pki mode is


* Public key encryption, private key decryption;


* Private key encryption, public key decryption;


*/


//private key encryption, public key decryption


//Client


//$data data


$data = ' ABCD ';


//Get private key $priv _key_id


$priv _key_id = Openssl_get_privatekey (file_get_contents (' 99bill-rsa.pem ', r));


//Get public key $pub _key_id


$pub _key_id = Openssl_get_publickey (file_get_contents (' 99bill-rsa.cer ', r));


//$data preferred through SHA1 hash encryption and then encrypted by $priv_key_id private key to generate signature $signature


//$signature is the encrypted signature


//openssl_sign () encryption function, as for its decryption method I do not know????????????????????????????????????


openssl_sign ($data, $signature, $priv _key_id, OPENSSL_ALGO_SHA1);


There are also two cryptographic functions, and these two cryptographic functions have the decryption method, know


//First: Private key encryption, public key decryption
//$data The data to be encrypted, $crypted encrypt the generated data, $decrypted decrypt the generated data, $data the same as the $decrypted value


///through $PRIV_KEY_ID private key encryption, generate $crypted;


Openssl_private_encrypt ($data, $crypted, $priv _key_id);


Echo $crypted;


//decrypted by $pub_key_id public key to generate $decrypted


Openssl_public_decrypt ($crypted, $decrypted, $pub _key_id);


//second: Public key encryption, private key decryption
//$data The data to be encrypted, $crypted encrypt the generated data, $decrypted decrypt the generated data, $data the same as the $decrypted value


///By $PUB_KEY_ID public key encryption, generate $crypted;


Openssl_public_encrypt ($data, $crypted, $pub _key_id);


//decrypted by $priv_key_id private key to generate $decrypted


Openssl_private_decrypt ($crypted, $decrypted, $priv _key_id);


//Note that my side of the file to get the public key and private key is not corresponding


//Normal, get the public key and private key file is one by one corresponding, here I use the fast money.


//Quick money gives the private key generate file, corresponding public key generate file on the quick Money side


//Quick Money gives the public key to generate the file, the corresponding private key generates the file on the quick Money side


That is, a public key generation file and a private key generation file are missing


//I never found a one by one corresponding private key, public key generated file, if you find a send me, thank you.

The
//Openssl_verify () method verifies that the signature is correct (the data generated by the private key encryption is returned and validated with the corresponding public key).


//$signature Public key encryption generated data, $data raw data, successfully returned 1, failed to return 0, error return-1


//$pub _key_id public key


openssl_verify ($data, $signature, $pub _key_id);


//Releases the private key or public key from memory


Openssl_free_key ($priv _key_id);


Openssl_free_key ($pub _key_id);


generate private and public key
 genrsa-out Private-rsa.pem
Rsa-in Private-rsa.pem-pubout-out Pubic-rsa.cer

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
openssl pki tutorial php pki openssl encryption algorithms openssl symmetric encryption php technology what php technology php latest technology

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More