|Think about Loose Coupling|
Crypt::CipherSaber replacement... Crypt::CBC?by skazat (Hermit)
|on Apr 30, 2010 at 05:43 UTC||Need Help??|
skazat has asked for the
wisdom of the Perl Monks concerning the following question:
Sorry for what may be a very simple question - encryption is not my forté:
I have an old script that currently uses chromatic's Crypt::CipherSaber v0.61. For some semblance of security, when saving pass phrases in a database (this could be a Dir-based or SQL database), for later re-fetching, pass phrases are encrypted and the key saved elsewhere.
I recently made this App very UTF-8 aware and I'm seeing problems with the encrypted passwords being created by this module - it seems that some of the characters are high-bit and sometimes do not get encoded/decoded correctly - the information basically gets corrupted.
This may be because the information should be handled in *binary*, instead of text form - which means its my program doing the corruption - the backend may not have the flexibility to handle some fields (like, the encrypted password) as binary - and the rest as text.
Is there a similar module I can use as a replacement for this aging module? Is looking at Crypt::CBC looking in the right direction?
I think what I'm most interested is that the encrypted password is comprised of a string of text, rather than a binary glob.
The other parameter is Pure-Perl implementation of whatever solution seems to be the most plausible.
Help a monk out?