Home >Backend Development >PHP Tutorial >How to use PHP rsa encryption and decryption_PHP tutorial
How to use PHP rsa encryption and decryption
This article mainly introduces the use of PHP rsa encryption and decryption. This article explains the generation of public keys and private keys and the examples of using the generated public keys and private keys for encryption and decryption in PHP. Friends in need can refer to it
When the PHP server interacts with the client and provides an open API, it is usually necessary to encrypt sensitive part of the API data transmission. At this time, rsa asymmetric encryption can come in handy. Here is an example to illustrate how to use it. php to implement data encryption and decryption
1. The first step in encryption and decryption is to generate a public key and private key pair. The content encrypted by the private key can be decrypted by the public key (and vice versa)
Download the open source RSA key generation tool openssl (usually Linux systems come with this program), unzip it to a separate folder, enter the bin directory, and execute the following command:
?
|
openssl genrsa -out rsa_private_key.pem 1024 openssl pkcs8 -topk8 -inform PEM -in rsa_private_key.pem -outform PEM -nocrypt -out private_key.pem openssl rsa -in rsa_private_key.pem -pubout -out rsa_public_key.pem |
The first command generates the original RSA private key file rsa_private_key.pem, the second command converts the original RSA private key to pkcs8 format, and the third command generates the RSA public key rsa_public_key.pem
It can be seen from the above that the corresponding public key can be generated through the private key, so we use the private key private_key.pem on the server side, and the public key is distributed to front-ends such as android and ios
2. Use the generated public key and private key to encrypt and decrypt in php, and directly upload the code
?
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 |
$private_key = '-----BEGIN RSA PRIVATE KEY----- MIICXQIBAAKBgQC3//sR2tXw0wrC2DySx8vNGlqt3Y7ldU9 LBLI6e1KS5lfc5jl TGF7KBTSkCHBM3ouEHWqp1ZJ85iJe59aF5gIB2klBd6h4wrbbHA2XE1sq21ykja/ Gqx7/IRia3zQfxGv/qEkyGOx XALVoOlZqDwh76o2n1vP1D tD3amHsK7QIDAQAB AoGBAKH14bMitESqD4PYwODWmy7rrrvyFPEnJJTECLjvKB7IkrVxVDkp1XiJnGKH 2h5syHQ5qslPSGYJ1M/XkDnGINwaLVHVD3BoKKgKg1bZn7ao5pXT herqxaVwWs6 ga63yVSIC8jcODxiuvxJnUMQRLaqoF6aUb/2VWc2T5MDmxLhAkEA3pwGpvXgLiWL 3h7QLYZLrLrbFRuRN4CYl4UYaAKokkAvZly04Glle8ycgOc2DzL4eiL4l/ x/gaq deJU/cHLRQJBANOZY0mEoVkwhU4bScSdnfM6usQowYBEwHYYh/OTv1a3SqcCE1f qbAclCqeNiHajCcDmgYJ53LfIgyv0wCS54kCQAXaPkaHclRkQlAdqUV5IWYyJ25f oiq Y8SgCCs73qixrU1YpJy9yKA/meG9smsl4Oh9IOIGI zUygh9YdSmEq0CQQC2 4G3IP2G3lNDRdZIm5NZ7PfnmyRabxk/UgVUWdk47IwTZHFkdhxKfC8QepUhBsAHL QjifGXY4eJKUBm3FpDGJAkAFwUxYssiJjvrHwnHFbg0rFkvvY63OSmnRxiL4X6EY yI9lblCsyfpl25l7l5zmJrAHn45zAiOoBrWqpM5edu7c -----END RSA PRIVATE KEY-----';
$public_key = '-----BEGIN PUBLIC KEY----- MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC3//sR2tXw0wrC2DySx8vNGlqt 3Y7ldU9 LBLI6e1KS5lfc5jlTGF7KBTSkCHBM3ouEHWqp1ZJ85iJe59aF5gIB2kl Bd6h4wrbbHA2XE1sq21ykja/Gqx7/IRia3zQfxGv/qEkyGOx XALVoOlZqDwh76o 2n1vP1D tD3amHsK7QIDAQAB -----END PUBLIC KEY-----';
//echo $private_key; $pi_key = openssl_pkey_get_private($private_key);//This function can be used to determine whether the private key is available and can return the resource id Resource id $pu_key = openssl_pkey_get_public($public_key);//This function can be used to determine whether the public key is available print_r($pi_key);echo "n"; print_r($pu_key);echo "n";
$data = "aassssasssddd";//original data $encrypted = ""; $decrypted = "";
echo "source data:",$data,"n";
echo "private key encrypt:n";
openssl_private_encrypt($data,$encrypted,$pi_key);//Private key encryption $encrypted = base64_encode($encrypted);//Encrypted content usually contains special characters and requires encoding conversion. When transmitting through URLs between networks, pay attention to whether base64 encoding is URL safe echo $encrypted,"n";
echo "public key decrypt:n";
openssl_public_decrypt(base64_decode($encrypted),$decrypted,$pu_key);//The content encrypted by the private key can be decrypted by the public key echo $decrypted,"n";
echo "---------------------------------------n"; echo "public key encrypt:n";
openssl_public_encrypt($data,$encrypted,$pu_key);//Public key encryption $encrypted = base64_encode($encrypted); echo $encrypted,"n";
echo "private key decrypt:n"; openssl_private_decrypt(base64_decode($encrypted),$decrypted,$pi_key);//Private key decryption echo $decrypted,"n"; |