|
|||||||||
|
|||||||||
| |||||||||
|
|
|
| |||||||||
 |
|
|
«
Previous Thread
|
Next Thread
»
|
Thread Tools | Search this Thread | Rate Thread | Display Modes |
Dev Shed Forums Sponsor:
|
|
Be the architects of evolution and help create the mobile internet future. It’s your move---enter to win here! |
|
#1
June 5th, 2000, 05:40 PM
|
|||
|
|||
|
I have a website I'm creating that will require the users to enter a credit card nubmer. The initial billing of the card is done on our secure server, but then it is stored in the MySQL database for future billings.
Given all of the recent outbreaks of hacking billing server, and databases, I would like to know if anyone knows of a way to ENCRYPT the card nubmer as it is placed into the database, and then DECRYPTED as it is retrieved to bill their card again... If anyone has any clues, please help me! I'm programming in PERL, so please submit the code in PERL. Thanks, Brant
|
|
#2
June 9th, 2000, 07:12 AM
|
|||
|
|||
|
CPAN has Perl modules for encrypting/decrypting in just about any scheme you care to mention.
See http://www.perl.com/CPAN-local/modu...14)Authenticati Note that the built-in Perl function crypt is useless for this task as there is no decrypt! If your data really is that critical I'd get some good advice on overall security (including physical and internal security) and hire someone to do independent testing and auditing.
|
|
#3
June 11th, 2000, 04:45 PM
|
||||
|
||||
|
The golden rule of ecommerce is NEVER store credit card information in any form in a database! You don't need it there, and you certainly don't need the liability.
It's safer and more accepted to have to re-enter your credit card information for each transaction, which is what all the large ecommerce projects such as amazon.com do.
|
|
| Viewing: Dev Shed Forums > Databases > MySQL Help > Encryption / Decryption of Sensitive Data |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
 |
|
|
Del.icio.us
Digg
Google
Spurl
Blink
Furl
Simpy
Y! MyWeb
Linear Mode
