1.2.319. Crypto Usage

Usage of cryptography and hashes functions.

The functions listed are the native PHP functions, and do not belong to a specific extension, like OpenSSL, mcrypt or mhash.

Cryptography and hashes are mainly used for storing sensitive data, such as passwords, or to verify authenticity of data. They may also be used for name-randomization with cache.

<?php

if (md5($_POST['password']) === $row['password_hash']) {
    user_login($user);
} else {
    error('Wrong password');
}
?>

See also Cryptography Extensions.

1.2.319.1. Connex PHP features

1.2.319.1.1. Specs

Short name

Php/CryptoUsage

Rulesets

All, Appinfo, CE, Changed Behavior

Exakat since

1.0.4

PHP Version

All

Severity

Time To Fix

Precision

Very high

Available in

Entreprise Edition, Community Edition, Exakat Cloud