How to Encrypt and Decrypt a String in PHP

PHP allows encrypting and decrypting a string with many methods, in this page we focus on one of the Cryptography Extensions, known as OpenSSL. To be short, it can be used to encrypt and decrypt data.

This extension binds functions of OpenSSL library for symmetric and asymmetric encryption and decryption, PBKDF2, PKCS7, PKCS12, X509 and other crypto operations. In addition to that it provides implementation of TLS streams.

Watch a video course Learn object oriented PHP

Encrypting Data with openssl_encrypt()

The openssl_encrypt() ope function can be applied for encrypting data in PHP.

The syntax of openssl_encrypt() will look as follows:

string openssl_encrypt( 
  string $data, string $method, string $key,
  $options = 0, string $iv, string $tag= NULL,
  string $aad, int $tag_length = 16  
)

On success, it returns the encrypted string. Otherwise, it returns FALSE.

Decrypting Data with openssl_decrypt()

You can use openssl_decrypt() for decrypting data in PHP.

The syntax of this function is:

string openssl_decrypt( 
  string $data, string $method, string $key,
  int $options = 0, string $iv, string $tag, string $aad
)

On success, it returns the decrypted string. Otherwise, it returns FALSE.

Examples of Encrypting and Decrypting a String in PHP

To be more precise, let’s have a look at examples of encrypting and decrypting a string.

Example 1

<?php

// Storing a string into the variable which
// needs to be Encrypted
$simple_string = "Welcome to W3docs\n";

// Displaying the original string
echo "Original String: " . $simple_string;

// Storingthe cipher method
$ciphering = "AES-128-CTR";

// Using OpenSSl Encryption method
$iv_length = openssl_cipher_iv_length($ciphering);
$options = 0;

// Non-NULL Initialization Vector for encryption
$encryption_iv = '1234567891011121';

// Storing the encryption key
$encryption_key = "W3docs";

// Using openssl_encrypt() function to encrypt the data
$encryption = openssl_encrypt($simple_string, $ciphering, $encryption_key, $options, $encryption_iv);

// Displaying the encrypted string
echo "Encrypted String: " . $encryption . "\n";

// Non-NULL Initialization Vector for decryption
$decryption_iv = '1234567891011121';

// Storing the decryption key
$decryption_key = "W3docs";

// Using openssl_decrypt() function to decrypt the data
$decryption = openssl_decrypt($encryption, $ciphering, $decryption_key, $options, $decryption_iv);

// Displaying the decrypted string
echo "Decrypted String: " . $decryption;

?>

Try it Yourself »

The output of the code above will be:

  Original String: Welcome to W3docs
  Encrypted String: kZEv65uJVrtngs6rhfX9WG2U
  Decrypted String: Welcome to W3docs

Example 2

In the second example, the string to be encrypted and decrypted is the same, yet the encrypted string randomly changes specifically.

See how it happens below:

<?php

// Storing a string into the variable which
// needs to be Encrypted
$simple_string = "Welcome to W3docs";

// Displaying the original string
echo "Original String: " . $simple_string . "\n";

// Storing cipher method
$ciphering = "BF-CBC";

// Using OpenSSl encryption method
$iv_length = openssl_cipher_iv_length($ciphering);
$options = 0;

// Using random_bytes() function which gives
// randomly 16 digit values
$encryption_iv = random_bytes($iv_length);

// Alternatively, any 16 digits may be used
// characters or numeric for iv
$encryption_key = openssl_digest(php_uname(), 'MD5', true);

// Encryption of string process begins
$encryption = openssl_encrypt($simple_string, $ciphering, $encryption_key, $options, $encryption_iv);

// Display the encrypted string
echo "Encrypted String: " . $encryption . "\n";

// Decryption of string process begins
// Used random_bytes() that gives randomly
// 16 digit values
$decryption_iv = random_bytes($iv_length);

// Store the decryption key
$decryption_key = openssl_digest(php_uname(), 'MD5', true);

// Decrypting the string
$decryption = openssl_decrypt($encryption, $ciphering, $decryption_key, $options, $encryption_iv);

// Showing the decrypted string
echo "Decrypted String: " . $decryption;

?>

Try it Yourself »

The output will be:

  Original String: Welcome to W3docs
  Encrypted String: Zm4a3DgDwfrlsYVLmc8iANj1PXw3uCUe
  Decrypted String: Welcome to W3docs

About OpenSSL

OpenSSL is a robust, general-purpose cryptography library that can encompass both symmetric and asymmetric encryption and decryption.

It is licensed under an Apache-style license. Hence, everyone is free to get and use it for both commercial and non-commercial purposes.

For more information, you can check out this source.