Let’s Get Random: Under the Hood of PHP 7’s CSPRNG - Day Camp 4 Developers

Let’s Get Random: Under the Hood of PHP 7’s CSPRNG - Day Camp 4 Developers

Talk given at DC4D on June 2nd, 2017

Randomness is really important in many cryptographic contexts. Unfortunately true randomness is a non-trivial achievement for computers. In fact, using weak sources of randomness can leave your application open to myriad vulnerabilities. Enter: a good cryptographically secure pseudorandom number generator (CSPRNG).

We’ll discuss the importance of using good sources of randomness, the CSPRNG options we had in PHP 5.x, and how the new-hotness CSPRNG functions in PHP 7 work under the hood.

8c090cc1ccd623a146ddd9159b1bf7e2?s=128

Sammy Kaye Powers

June 02, 2017
Tweet