Awesome video Bernhard! Would be cool if you did a follow up on handling the key pairs and data in transit. I see your channel is pretty new, so best of luck! One suggestion from me would be to lower the background music volume to a quarter. Thanks

Very helpful, thank you.

Awesome video Bernhard! When developing an emaillist and newsletter function in a website for a client, I found it unnerving that the emails would just lie there in the database without any protection, should an attacker actually get access. This method is great since I can now increase security of the email list functionality by encrypting the emails in the database, and only decrypt them to the original plaintext, when I need PHPMailer to send out an email.

wonderful explanation of this library. Thanks Bernhard

Great video Bernhard, great explanation!

Very helpful video! Thank you very much, you saved me hours of research!

Great explanation, thanks. I have a problem in which I get an 'access expired' message when decrypting on a different page. I have it working in a test project, but when I've tried to replace mcrypt with libsodium in a real peoject, I get the 'access expired' message. I'm storing the nonce in a SESSION variable. But have also tried hard-coding it into an environment variable so it doesn't change, but still the same issue. Any suggestions on how to resolve this? Thanks!

Great video Bernhard. I am new to this. You explained this very well. Thank you. I will be using this PHP library to insert data into MySQL/MariaDB. Do you have any suggestions on where I can learn to do a search on this encrypted data?

New to encryption. How would you pass the same nonce value to the receiver so they can decrypt the ciphertext correctly?

Hi Bernhard, danke für das Video, schön einfach und ausführlich. Eine Frage, die mich schon länger beschäftigt: Angenommen ich habe Nutzerdaten, die ich sicher speichern möchte. Passwörter werden ja nur gehasht, aber vielleicht will ich ja Kontaktdaten oder Zahlungsinformation nur verschlüsselt speichern, sodass diese Daten nicht gleich offenliegen, falls es einmal zu einem Leak kommt. Jetzt würde ich jedem Nutzer einen eigenen Key und natürlich eine eigene Nonce geben, müsste also vor dem Zugriff auf die Daten beides Laden, die Daten lesen, dann entschlüsseln und weiterverarbeiten. Die Herausforderung ist jetzt aber: Wie speichere ich diese Schlüsselinformationen selbst denn sicher? Separate Datenbank? Separater Server? Verschlüsselte Schlüssel? Gibt es dazu eine Art Best Practice, um im Falle eines Falles nicht gleich das Secret neben den verschlüsselten Daten liegen zu haben? Danke schonmal, und liebe Grüße.

how to pass the key value to another page?