How to Secure Data Transmission with PHP: HTTPS, Symmetric and Asymmetric Encryption

As the internet evolves, securing data transmission becomes critical because unencrypted data can be intercepted, leading to privacy breaches or tampering.

PHP, a widely used server‑side language, offers several ways to encrypt data during transmission.

1. Use HTTPS – HTTPS, built on SSL/TLS, adds an encryption layer between HTTP and TCP, preventing man‑in‑the‑middle attacks and data theft. PHP sites can enable HTTPS through server configuration.

2. Use symmetric encryption algorithms – Symmetric algorithms such as AES, DES, or 3DES use the same key for encryption and decryption. The key must be shared securely beforehand. Example PHP code:

$key = "密钥"; // key
$data = "待加密数据"; // data to encrypt

// encrypt
$encryptedData = openssl_encrypt($data, 'AES-128-ECB', $key, OPENSSL_RAW_DATA);

// decrypt
$decryptedData = openssl_decrypt($encryptedData, 'AES-128-ECB', $key, OPENSSL_RAW_DATA);

3. Use asymmetric encryption algorithms – Asymmetric cryptography uses a public‑private key pair; the public key encrypts data, and the private key decrypts it, providing authentication without transmitting the private key. PHP’s OpenSSL extension can generate keys and perform encryption/decryption. Example:

// generate key pair
$config = array(
    "digest_alg" => "sha512",
    "private_key_bits" => 2048,
    "private_key_type" => OPENSSL_KEYTYPE_RSA
);
$res = openssl_pkey_new($config);
openssl_pkey_export($res, $privateKey);
$publicKey = openssl_pkey_get_details($res)["key"];

$data = "待加密数据";

// encrypt
if (openssl_public_encrypt($data, $encryptedData, $publicKey)) {
    // decrypt
    if (openssl_private_decrypt($encryptedData, $decryptedData, $privateKey)) {
        echo $decryptedData;
    }
}

By applying HTTPS, symmetric encryption, and asymmetric encryption, PHP developers can protect data confidentiality, integrity, and authentication, while also managing keys securely and rotating them regularly.