Login Register

base\Security encryptByPassword()

encryptByPassword() public method

Encrypts data using a password.

Derives keys for encryption and authentication from the password using PBKDF2 and a random salt, which is deliberately slow to protect against dictionary attacks. Use encryptByKey() to encrypt fast using a cryptographic key rather than a password. Key derivation time is determined by $derivationIterations, which should be set as high as possible. The encrypted data includes a keyed message authentication code (MAC) so there is no need to hash input or output data. > Note: Avoid encrypting with passwords wherever possible. Nothing can protect against poor-quality or compromised passwords.

See also:

public string encryptByPassword ( $data, $password )
$data	string	The data to encrypt
$password	string	The password to use for encryption
return	string	The encrypted data

Links:

http://www.yiiframework.com/doc-2.0/yii-base-security.html#encryptByPassword()-detail

doc_Yii

2016-10-30 16:52:20

Comments

Leave a Comment

Please login to continue.

Popular Articles

base\Security $derivationIterations $derivationIterations public property Derivation iterations count. Set as high as possible to hinder dictionary password attacks. public integer

base\Security validatePassword() validatePassword() public method Verifies a password against a hash. See also generatePasswordHash(). public boolean validatePassword ( $passwo

base\Security generateSalt() generateSalt() protected method Generates a salt that can be used to generate a password hash. The PHP crypt() built-in function requires, for th

base\Security pbkdf2() pbkdf2() public method Derives a key from the given password using the standard PBKDF2 algorithm. Implements HKDF2 specified in RFC 2898 Recommen

base\Security $passwordHashStrategy $passwordHashStrategy public property Strategy, which should be used to generate password hash. Available strategies: 'password_hash' - use of PH