March 20th, 2001, 02:46 AM
After reading the thread "Secure sites" in this forum, I was curious, what is the best, recomended, personal favorite, etc.. method of getting and then viewing / processing sensitive data from a user?
Currently I use an SSL connection and encrypt users data with a custom algorithm (MD5 based). I can then run that infomation though my processing interface to retrieve the encrypted data. Bad, Good? Any suggestions here?
Wayne Witzel III
March 20th, 2001, 11:10 AM
I'm not certain I understand your question, but...
I think the issue that was brought up was that you don't want to to have the information sent to the server securely, only to then send the information via E-mail, which is unsecure. As long as the server is secure, you are using at least 128-bit encryption, and the particular page is being accessed via an https connection, I don't think you will have a problem.