Menu
I am building a site, and will have it hosted with a public company (ipowerweb.com). I would like to keep customers credit cards in the database.
Does anyone have advice for the best way to secure and encrypt them ? What about storing and encryption of passwords, too (please) ?
Thanks for any insight.
Mike P
Sorry if I am intruding in between and if I am talking offtopic.
But do you think that payment gateways like paypal, authorize.net, are they really really hackproof?
I mean is it like no one on this earth can crack their encryption algorithm and hack into their database?
Pls enlighten me.
Thanks[/QUOTE]
Have you ever tried hacking an http[B]s[/B] server?
http[B]s[/B] operates differently to http.[/QUOTE]
If you read up, the main vunerabilities seem to lie in the use of frameworks, so I would guess that the best policy is not to use things like ruby on rails on https as it poses a potential keyhole entry point.[/quote]
... And besides which if Paypal etc are hacked, it's not your problem, it's theirs. You really do not want to be dealing with the legal ramifications of having exposed a database of credit card numbers and other personal data due to a security hole in your app. ...[/QUOTE]
0.1.9 — BETA 6.1