Hi talentiptv welcome to the forum
Security is a field in itself that has quite a learning curve.
When you say "via PHP" you will be missing a lot of what should be done if that's all you use. But I imagine some is better than none.
Anyway, I recommend you read
and do as many of those as you can understand.