1. No Profile Picture
    Junior Member
    Devshed Newbie (0 - 499 posts)

    Join Date
    Mar 2000
    Fitzgerald Ga USA
    Rep Power
    I have a website I'm creating that will require the users to enter a credit card nubmer. The initial billing of the card is done on our secure server, but then it is stored in the MySQL database for future billings.
    Given all of the recent outbreaks of hacking billing server, and databases, I would like to know if anyone knows of a way to ENCRYPT the card nubmer as it is placed into the database, and then DECRYPTED as it is retrieved to bill their card again...
    If anyone has any clues, please help me!

    I'm programming in PERL, so please submit the code in PERL.

  2. #2
  3. No Profile Picture
    Contributing User
    Devshed Newbie (0 - 499 posts)

    Join Date
    May 2000
    London, England
    Rep Power
    CPAN has Perl modules for encrypting/decrypting in just about any scheme you care to mention.

    See http://www.perl.com/CPAN-local/modul...4)Authenticati

    Note that the built-in Perl function crypt is useless for this task as there is no decrypt!

    If your data really is that critical I'd get some good advice on overall security (including physical and internal security) and hire someone to do independent testing and auditing.
  4. #3
  5. Full Access
    Devshed Regular (2000 - 2499 posts)

    Join Date
    Jun 2000
    London, UK
    Rep Power
    The golden rule of ecommerce is NEVER store credit card information in any form in a database! You don't need it there, and you certainly don't need the liability.

    It's safer and more accepted to have to re-enter your credit card information for each transaction, which is what all the large ecommerce projects such as amazon.com do.

Similar Threads

  1. Question about data encryption
    By mlh2003 in forum MS SQL Development
    Replies: 0
    Last Post: November 27th, 2003, 06:11 PM
  2. loosing data while parsing XML with Expat
    By fabiank in forum XML Programming
    Replies: 0
    Last Post: November 19th, 2003, 05:52 AM
  3. Data Encryption Standard
    By fares in forum Software Design
    Replies: 0
    Last Post: May 21st, 2003, 10:22 PM
  4. remove " from data in mysql
    By snkhan in forum PHP Development
    Replies: 1
    Last Post: April 6th, 2003, 03:56 PM
  5. sorting of data from a file
    By huikuan in forum Java Help
    Replies: 4
    Last Post: September 14th, 2002, 09:44 PM

IMN logo majestic logo threadwatch logo seochat tools logo