Have you ever wondered about any of the following security concerns?

- How to store user passwords
- How to encrypt/decrypt sensitive information
- How to authenticate users

The Sodium crypto library, offered as a core extension of PHP since 7.2, is a modern, easy-to-use software library for encryption, decryption, signatures, password hashing, and more, solving each of the above problems. We will demonstrate each during this session, as well as present advanced features such as authenticated encryption, anonymous public-key encryption, and elliptic curve cryptography.

Comments

Please login to leave a comment

Rated 4

Eric Morris at 11:17 on 8 Feb 2019

A good talk about the Sodium library with examples of the common and recommended use cases typically in today's computing environment.

He notes that Sodium is different from OpenSSL in that you don't get to choose your algorithms. He also gave a high-level primer on ECC and why it is important in modern cryptography.

Rated 4

Stephen Rees at 12:15 on 8 Feb 2019

Great beginner talk on utilizing encryption. Helpful intro to sodium for me as I'll have to convert our code from mcrypt very soon. Bit of a rabbit trail into the mathematics of encryption, which as he noted, is really for a different talk.

Rated 5

Parth K at 15:46 on 8 Feb 2019

Learned a lot and was absolutely perfect for me in terms of my knowledge. Clear and precise.

The second half of this talk, about what distinct categories of operations sodium provides and what subset of functions are related to that, is absolute gold. All of that should be in the PHP manual.

The first half, I knew already knew, so that wasn’t so engaging for me, but that’s probably just me.

Wow, really great feature that i didn't know existed. Will definitely be using this as soon as i get home. Presentation was very useful and informative. Examples given made it very clear how to use these features in my own projects. Thanks!

Great topic. Nice presentation.