paragonie/constant_time_encoding
Stars: 712
Forks: 35
Pull Requests: 34
Issues: 20
Watchers: 17
Last Updated: 2023-09-05 20:12:14
Constant-Time Character Encoding in PHP Projects
License: Other
Languages: PHP
https://paragonie.com/blog/2016/06/constant-time-encoding-boring-cryptography-rfc-4648-and-you
Constant-Time Encoding
Based on the constant-time base64 implementation made by Steve "Sc00bz" Thomas, this library aims to offer character encoding functions that do not leak information about what you are encoding/decoding via processor cache misses. Further reading on cache-timing attacks.
Our fork offers the following enhancements:
mbstring.func_overloadresistance- Unit tests
- Composer- and Packagist-ready
- Base16 encoding
- Base32 encoding
- Uses
pack()andunpack()instead ofchr()andord()
PHP Version Requirements
Version 2 of this library should work on PHP 7 or newer. For PHP 5 support, see the v1.x branch.
If you are adding this as a dependency to a project intended to work on both PHP 5 and PHP 7, please set the required version to ^1|^2 instead of just ^1 or ^2.
How to Install
composer require paragonie/constant_time_encodingHow to Use
use ParagonIE\ConstantTime\Encoding;
// possibly (if applicable):
// require 'vendor/autoload.php';
$data = random_bytes(32);
echo Encoding::base64Encode($data), "\n";
echo Encoding::base32EncodeUpper($data), "\n";
echo Encoding::base32Encode($data), "\n";
echo Encoding::hexEncode($data), "\n";
echo Encoding::hexEncodeUpper($data), "\n";Example output:
1VilPkeVqirlPifk5scbzcTTbMT2clp+Zkyv9VFFasE=
2VMKKPSHSWVCVZJ6E7SONRY3ZXCNG3GE6ZZFU7TGJSX7KUKFNLAQ====
2vmkkpshswvcvzj6e7sonry3zxcng3ge6zzfu7tgjsx7kukfnlaq====
d558a53e4795aa2ae53e27e4e6c71bcdc4d36cc4f6725a7e664caff551456ac1
D558A53E4795AA2AE53E27E4E6C71BDCC4D36CC4F6725A7E664CAFF551456AC1
If you only need a particular variant, you can just reference the required class like so:
use ParagonIE\ConstantTime\Base64;
use ParagonIE\ConstantTime\Base32;
$data = random_bytes(32);
echo Base64::encode($data), "\n";
echo Base32::encode($data), "\n";Example output:
1VilPkeVqirlPifk5scbzcTTbMT2clp+Zkyv9VFFasE=
2vmkkpshswvcvzj6e7sonry3zxcng3ge6zzfu7tgjsx7kukfnlaq====
Support Contracts
If your company uses this library in their products or services, you may be interested in purchasing a support contract from Paragon Initiative Enterprises.
OPEN ISSUES
See allRELEASES
See all- Version 0.1.0 by @paragonie-scott
- Version 0.2.0 by @paragonie-scott
- Version 0.2.1 by @paragonie-scott
- Version 0.3.0 by @paragonie-scott
- Version 0.4.0 by @paragonie-scott
- Version 0.5.0 by @paragonie-scott
- Version 0.5.1 by @paragonie-scott
- Version 0.6.0 by @paragonie-scott
- Version 1.0.0 by @paragonie-scott
- Version 2.0.0 by @paragonie-scott
- Version 2.0.1 by @paragonie-scott
- Version 1.0.1 by @paragonie-scott
- Version 2.0.2 by @paragonie-scott
- Version 2.0.3 by @paragonie-scott
- Version 2.1.0 by @paragonie-scott
- Version 2.1.1 by @paragonie-scott
- Version 2.2.0 by @paragonie-scott
- Version 2.2.1 by @paragonie-scott
- Version 1.0.2 by @paragonie-scott
- Version 2.2.2 by @paragonie-scott
- Version 1.0.3 by @paragonie-scott
- Version 1.0.4 by @paragonie-scott
- Version 2.3.0 by @paragonie-scott
- Version 2.4.0 by @paragonie-security
- Version 1.1.0 by @paragonie-security
- Version 2.5.0 by @paragonie-security
- Version 2.6.0 by @paragonie-security
- Version 2.6.1 by @paragonie-security
- Version 2.6.2 by @paragonie-security
- Version 2.6.3 by @paragonie-security