Let's get random: Under the hood of PHP 7's CSPRNG

Sammy Kaye Powers (17.Oct.2018 at 16:00, 1 hr )
Talk at ZendCon & OpenEnterprise 2018 (English - US)

Rating: 5 of 5

Randomness is really important in many cryptographic contexts. Unfortunately, true randomness is a non-trivial achievement for computers. In fact, using weak sources of randomness can leave your application open to myriad vulnerabilities. Enter a good cryptographically secure pseudorandom number generator (CSPRNG).

We’ll discuss the importance of using good sources of randomness, the CSPRNG options we had in PHP 5, and how the new-goodness CSPRNG functions in PHP 7 work under the hood.

Who are you?

Claim talk

Talk claims have been moved to the new Joind.in site.

Please login to the new site to claim your talk

Want to comment on this talk? Log in or create a new account or comment anonymously

Write a comment

 
Please note: you are not logged in and will be posting anonymously!
= five minus two

Comments

Rating: 5 of 5

17.Oct.2018 at 16:59 by Brian Johnson (12 comments) via Web2 LIVE

Easily one of the best presentations of the conference. Great info, and never a dull moment.

Rating: 5 of 5

17.Oct.2018 at 17:19 by Adam Englander (26 comments) via Web2 LIVE

So awesome! Really great explanations that worked for crypto experts as well as those who were not.

Rating: 4 of 5

19.Oct.2018 at 11:25 by Ben Roberts (7 comments) via Web2 LIVE

Sammy's talk on the importance of sufficiently random input to application security was insightful and entertaining. Also, it didn't hurt to have been on the receiving end of a give-a-way of one of the rare PHP Elephants by PHP Roundtable!

© Joind.in 2018