Re: Credit Card Number Encryption
Re: Credit Card Number Encryption
- Subject: Re: Credit Card Number Encryption
- From: Gerald Hanks <email@hidden>
- Date: Fri, 23 Apr 2004 14:51:58 -0600
Not storing the cc data certainly would be a nice thing but
unfortunately the product being paid for is a reoccurring service. I
don't want to require the customer to return each month to put in their
cc info again. One additional twist to add to the mix. The card
processing is actually done using some perl libraries that have come
from the credit card processing company. So ideally I am looking for
something that I can use to encrypt in Java and decrypt in perl.
--gerald
On Apr 23, 2004, at 2:02 PM, Chuck Hill wrote:
The java.crypto libraries have a fair bit in them. Search for JCE in
Google. The hands down most secure way is to not store them or store
only the first few digits. The customer needs to re-enter them at
each purchase. A minor nuisance but the customer is guaranteed that
nobody can hack into your system and get their CC information. I've
seen a few sites that do this for security.
Chuck
On Apr 23, 2004, at 12:27 PM, Gerald Hanks wrote:
Could someone please tell me what the standard would be for
encrypting sensitive data such as credit card numbers in WebObjects?
Are there libraries/routines that are used both within the United
States as well as outside the US or is there a standard that is used
for both?
-gerald
_______________________________________________
webobjects-dev mailing list | email@hidden
Help/Unsubscribe/Archives:
http://www.lists.apple.com/mailman/listinfo/webobjects-dev
Do not post admin requests to the list. They will be ignored.
_______________________________________________
webobjects-dev mailing list | email@hidden
Help/Unsubscribe/Archives: http://www.lists.apple.com/mailman/listinfo/webobjects-dev
Do not post admin requests to the list. They will be ignored.