PHP RFC: Simple Cryptography Library

• Version: 0.1
• Date: 2016-01-09
• Author: Scott Arciszewski, security@paragonie.com
• Status: Draft
• First Published at: https://wiki.php.net/rfc/php71-crypto

Cryptography is hard to get right, even for experts. Building atop the victories against insecure design that the password hashing API have brought us, I would seek to provide a simple, secure-by-default cryptography interface that puts as little burden on the user (PHP developers) as possible, that works with multiple cryptography backends.

This should be considered for inclusion in PHP 7.1

This is a new feature; would a 50%+1 majority be acceptable?

A prototype is available here, which fleshed out a lot of the ideas: https://github.com/paragonie/pco_prototype