Skip to content

Releases: paragonie/easy-ecc

Version 0.2.0

14 Jul 15:36
@paragonie-security paragonie-security
v0.2.0
This tag was signed with the committer’s verified signature.
paragonie-security P.I.E. Security Team
GPG key ID: 6B97A1C2826404DA
Learn about vigilant mode.
86492e2
Compare
Choose a tag to compare
Version 0.2.0 Pre-release
Pre-release
  • Fixed a bug with the libsodium integration causing out-of-memory errors.
Assets 2
Loading

Version 0.1.0

11 Feb 22:09
@paragonie-scott paragonie-scott
v0.1.0
This tag was signed with the committer’s verified signature.
paragonie-security P.I.E. Security Team
GPG key ID: 6B97A1C2826404DA
Learn about vigilant mode.
31a874c
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 0.1.0 Pre-release
Pre-release

Introducing Easy-ECC, a usability wrapper for phpecc/phpecc.

I should probably have a big asterisk on that statement: In its default configuration, it uses libsodium instead.

$ecc = new ParagonIE\EasyECC\EasyECC(); // libsodium
$ecc = new ParagonIE\EasyECC\EasyECC('K256'); // phpecc/phpecc with secp256k1 + SHA256
$ecc = new ParagonIE\EasyECC\EasyECC('P256'); // phpecc/phpecc with NIST P-256 + SHA256
$ecc = new ParagonIE\EasyECC\EasyECC('P384'); // phpecc/phpecc with NIST P-384 + SHA384

This isn't merely an easy-to-use interface, it also is secure-by-default. For example, if you're not using libsodium and want to sign a message, Easy-ECC opts for RFC 6979 (deterministic ECDSA) instead of risking k-value reuse/bias.

Furthermore, this includes an integration with defuse/php-encryption for public-key authenticated encryption.

$defuse = new ParagonIE\EasyECC\Integration\Defuse($ecc);
$ctxt = $defuse->asymmetricEncrypt($msg, $sk, $pk);
Assets 2
Loading