Reputation: 347
Where should I store an encryption key for php?
I'm writing a php application that accepts sensitive customer data, and so I need to encrypt it before storing it in a mysql database. I'm going to use mysql's built-in AES functionality to do column-level encryption.
I want to avoid storing the encryption key on the server, and so i'm going to provide a web-page for an administrator to log-in, and enter the encryption key. I want to store this key in memory while the application is running, but never permanently to disk.
What is the best way to do this?
Can I modify the $_SERVER array to store information between requests? Can I store the key with apache in some way? Maybe shared memory?
Upvotes: 5
Views: 9834
Answers (5)
Reputation: 17
Write a php config file and store it in your home directory. Allow only php to have access to it.
$cryptKey = "aac1ebadcfabdef72376acd" ;
Include at the top of every php page that uses the encryption key using an absolute path to the home folder. This folder is not accessible to the end user.
Upvotes: 0
Reputation: 347
I ended up storing the encryption key in an in-memory table. All access to the database is done through a set of stored procedures; The stored procedures include the ability to do key management (i.e. insert key to memory-table, change keys, check if a key has been entered etc.), as well as store/retrieve application data.
With this design, the database credentials left on the application server only have the authorization to query through the set of defined procedures, and have no way to read the encryption key directly.
I liked this approach because:
- The key isn't stored on the file system - preventing issues with hardware disposal at end-of-life, and from prying eyes of system administrators
- The application code can't get access to the key (other than while entering it), so the only place it will ever reside is within the database process.
- All logic for encryption/decryption is embedded within the SQL queries, so don't need to worry about application code doing it correctly - Nice for maintenance.
Upvotes: 4
Reputation: 191749
Rather than rely on MySQL AES for encryption, why not use PHP's native openssl encryption scheme (a PECL extension). This requires a private and public key, public to encrypt, private to decrypt, and the keys can be kept in separate places.
Upvotes: 7
Reputation: 733
The safest place to store any kind of encryption key is on the server NOT in the database, and make sure it is owned by root and not readable by others.
Upvotes: 2
Related Questions
- What is the best way to store AES encryption keys in a php application?
- what's the best place to save encryption public and private keys in a laravel server
- How to store the encryption keys securely in php code file
- Where to store private key for encryption in PHP environment
- Secure way to store encryption keys - PHP
- Best way to save encrypt/decrypt key?
- Where to store encryption key?
- Where and how to store encryption_key out of CodeIgniter
- Where should one store the cipher key when using AES encryption with PHP?
- What's the best method to use / store encryption keys in MySQL