PHP openssl_pbkdf2() Function Last Updated : 25 Jul, 2023 Summarize Comments Improve Suggest changes Share Like Article Like Report The openssl_pbkdf2() function is an inbuilt function in PHP that implements the Password-Based Key Derivation Function 2 (PBKDF2) algorithm provided by the OpenSSL library. The algorithm is designed to be slow and computationally intensive, making it resistant to brute-force attacks. Syntax: openssl_pbkdf2( string $password, string $salt, int $key_length, int $iterations, string $digest_algo = "sha1" ) : string|falseParameters: This function accepts five parameters that are described below: $password: The password that the key should be derived from.$salt: A random salt value that should be used to help make the derived key unique.$key_length: The length (in bytes) of the derived key.$iterations: The number of iterations to use when deriving the key. More iterations will make the algorithm slower but also more secure.$digest_algo: The digest algorithm to use when deriving the key. This should be one of the supported OpenSSL digest algorithms, such as "sha256" or "sha512".Return Value: The return value of openssl_pbkdf2() is a binary string containing the derived key. If failure, it will return "false". Example 1: The following example demonstrates the openssl_pbkdf2() function. PHP <?php $password = "this@ismypassword55839459144595"; // Saved hash from a previous run $savedHash = "MjY4YjRkZDc1YzAzNzYzZGMwZDEzYjI3NmVlM2ZkNTE="; $decodedHash = base64_decode($savedHash); if (openssl_pbkdf2($password, $decodedHash, 32, 10000, "sha256") === $decodedHash) { echo "Password is valid."; } else { echo "Password is invalid."; } ?> OutputPassword is invalid. Example 2: The following example demonstrates the openssl_pbkdf2() function. PHP <?php $userID = 'user123'; $deviceID = 'device456'; $secretKey = openssl_random_pseudo_bytes(32); $salt = $userID . $deviceID; $iterations = 50000; $keyLength = 64; $secureToken = openssl_pbkdf2($secretKey, $salt, $keyLength, $iterations, 'sha512'); // Display the secure token echo "Secure Token: " . base64_encode($secureToken) . "\n"; ?> Output: Secure Token: LWL+RuQr+TmOysJt8CBrKu5yC8vk2f9aMBH9y1xK82Nz4dDd88dd+8QqssBgoMDnGD9D5kTcmAlldzz7hUStjw== Reference: https://www.php.net/manual/en/function.openssl-pbkdf2.php Comment More infoAdvertise with us N neeraj3304 Follow Improve Article Tags : PHP PHP-function PHP-OpenSSL Similar Reads PHP Tutorial PHP is a widely used, open-source server-side scripting language primarily designed for web development. It is embedded directly into HTML and generates dynamic content on web pages. It allows developers to handle database interactions, session management, and form handling tasks.PHP code is execute 9 min read Top 60+ PHP Interview Questions and Answers -2025 PHP is a popular server-side scripting language, widely known for its efficiency in web development and versatility across various platforms. PHP is extensively utilized by top companies such as Facebook, WordPress, Slack, Wikipedia, MailChimp, and many more due to its robust features and high perfo 15+ min read PHP Introduction PHP stands for Hypertext Preprocessor. It is an open-source, widely used language for web development. Developers can create dynamic and interactive websites by embedding PHP code into HTML. PHP can handle data processing, session management, form handling, and database integration. The latest versi 8 min read PHP Arrays Arrays are one of the most important data structures in PHP. They allow you to store multiple values in a single variable. PHP arrays can hold values of different types, such as strings, numbers, or even other arrays. Understanding how to use arrays in PHP is important for working with data efficien 5 min read PHP | Functions A function in PHP is a self-contained block of code that performs a specific task. It can accept inputs (parameters), execute a set of statements, and optionally return a value. PHP functions allow code reusability by encapsulating a block of code to perform specific tasks.Functions can accept param 8 min read Difference between HTTP GET and POST Methods HTTP (Hypertext Transfer Protocol) specifies a collection of request methods to specify what action is to be performed on a particular resource. The most commonly used HTTP request methods are GET, POST, PUT, PATCH, and DELETE. This article covers the 2 most common HTTP request methods, i.e. the GET 4 min read PHP Data Types In PHP, data types define the kind of value a variable can hold. PHP is a loosely typed language, meaning you don’t need to declare the data type of a variable. It is automatically assigned based on the value. But it is important to understand data types because it is important for writing reliable, 4 min read PHP Operators In PHP, operators are special symbols used to perform operations on variables and values. Operators help you perform a variety of tasks, such as mathematical calculations, string manipulations, logical comparisons, and more. Understanding operators is essential for writing effective and efficient PH 8 min read Creating a Registration and Login System with PHP and MySQL A registration and login system is a fundamental component of many web applications and provides user authentication and security. This allows users to create an account log in with their login credentials and manage their session securely. By using PHP for server-side scripting and MYSQL for databa 12 min read PHP File Handling In PHP, File handling is the process of interacting with files on the server, such as reading files, writing to a file, creating new files, or deleting existing ones. File handling is essential for applications that require the storage and retrieval of data, such as logging systems, user-generated c 4 min read Like