Let's get random: Under the hood of PHP 7's CSPRNG

Sammy Kaye Powers

Wednesday 17 October 2018 from 16:00 to 17:00

Talk in English - US at ZendCon & OpenEnterprise 2018
Track Name: Artist D
View Slides: https://speakerdeck.com/sammyk/lets-get-random-under-the-hood-of-php-7-s-csprng-zendcon-and-openenterprise-2018
Short URL: https://joind.in/talk/0e3b7 (QR-Code (opens in new window))

Avg. Rating

Randomness is really important in many cryptographic contexts. Unfortunately, true randomness is a non-trivial achievement for computers. In fact, using weak sources of randomness can leave your application open to myriad vulnerabilities. Enter a good cryptographically secure pseudorandom number generator (CSPRNG).

We’ll discuss the importance of using good sources of randomness, the CSPRNG options we had in PHP 5, and how the new-goodness CSPRNG functions in PHP 7 work under the hood.

Comments

Comments are closed.

Brian Johnson at 16:59 on 17 Oct 2018 (via Web2 LIVE)

Easily one of the best presentations of the conference. Great info, and never a dull moment.

Adam Englander at 17:19 on 17 Oct 2018 (via Web2 LIVE)

So awesome! Really great explanations that worked for crypto experts as well as those who were not.

Ben Roberts at 11:25 on 19 Oct 2018 (via Web2 LIVE)

Sammy's talk on the importance of sufficiently random input to application security was insightful and entertaining. Also, it didn't hurt to have been on the receiving end of a give-a-way of one of the rare PHP Elephants by PHP Roundtable!