Hi all,
Sorry I'm entering this thread a little late. I noticed some Shift4 references
so I decided to chime in.
You'll definately want to use some form or tokenization, whether ours or any
gateway you decide to use. One product I would like to mention that we offer is
i4Go. It is a
On Tue, Jul 8, 2008 at 11:23 AM, Steve Sommers [EMAIL PROTECTED] wrote:
P.S. Josheph, thanks for the kind words and I hope all worked out for you.
I'm still ashamed the way things went down.
Hey.. No worries. I call it like I see it and I know Shift4 is a great
company for people to use (heck,
Lookup PCI Compliance you will see the recommended practices. You can store
certain as long as you have data encrypted. As well as written policies that
detail it and how you handle key management. I am working on a 3DES solution
that will be alot cheaper than buying an nChiper or the likes for
MSSQL has built in DES encryption now. It is very simple to implement.
Authorize.net has recurring billing that you can set up through their API so
you can avoid keeping the numbers yourself.
~|
Adobe® ColdFusion® 8 software 8
Lookup PCI Compliance you will see the recommended practices. You can store
certain as long as you have data encrypted. As well as written policies that
detail it and how you handle key management. I am working on a 3DES solution
that will be alot cheaper than buying an nChiper or the likes for
-
From: Phillip Vector [mailto:[EMAIL PROTECTED]
Sent: Thursday, May 22, 2008 3:52 PM
To: CF-Talk
Subject: Re: credit card storage help
Sounds like a management problem then actually..
You may want to check out Shift4. They are pretty cheap and are pretty
reliable. I used to work for them
.
-Original Message-
From: Phillip Vector [mailto:[EMAIL PROTECTED]
Sent: Thursday, May 22, 2008 3:52 PM
To: CF-Talk
Subject: Re: credit card storage help
Sounds like a management problem then actually..
You may want to check out Shift4. They are pretty cheap and are pretty
reliable. I
so you're saying I shouldn't do it??? =) ok, you convinced me... I was pretty
nervous about doing that anyway... looks like shift4 will do what I need
anyway.
and for those of you in a similar situation, i would NOT recommend cardservice
international for anything even vaguely large-scale.
When you talk to Shift4, tell them Joseph Bullock-Palser sent ya. If
they say who is that, tell them it's the developer they fired 3 days
before Christmas after he moved out to work for them.
Good company for security, Pain in the neck HR rep.
On Fri, May 23, 2008 at 12:47 PM, Jessica Kennedy
So how do ISPs and other companies handle storing credit cards? I
get regularly charged by several companies, not all of whom would be
large enough to have dedicated IT departments. Are they storing
the card details and hoping for the best?
I know there are big billing companies who would
I need some help finding a secure way to store credit cards on a website I am
working on. I know, I know you shouldn't do it unless you absolutely MUST, but
it looks like I absolutely must, sad to say. I have to set up reoccurring
payments with credit cards that will notify the user if their
That's pretty much it I would think... Encrypted sounds like the only
way to do it (and that's not that secure).
Can your payment processor handle the storage of your cards?
If not, what is the name of the company so I know never to use it. :)
On Thu, May 22, 2008 at 11:50 AM, Jessica Kennedy
Cardservice international... they store partial card #'s for reference if I am
not mistaken...
they have a reoccurring billing feature on their website, the only problem is
that once a person is entered into the reoccurring cycle, they will run the
person's credit card over and over and stick
Sounds like a management problem then actually..
You may want to check out Shift4. They are pretty cheap and are pretty
reliable. I used to work for them and trust me.. Security is #1 for
them.
If not, then you need to get on the phone with them and complain that
they are assisting with fraud or
Jessica Kennedy wrote:
I need some help finding a secure way to store credit cards on a website I am
working on.
1. Don't
2. No really, don't
I've had to do it once. I wasn't happy about it. I made the client sign
a waiver saying that I was in *no* way responsible if anything ever
happened
You're opening yourself up to huge potential liability if anyone ever steals
these numbers. Basically, don't.
http://usa.visa.com/merchants/risk_management/cisp.html
On Thu, May 22, 2008 at 2:50 PM, Jessica Kennedy
[EMAIL PROTECTED] wrote:
I need some help finding a secure way to store
Well, at least you can go back to your boss and tell him that you
didn't find a single person who says you should store it. :)
On Thu, May 22, 2008 at 4:19 PM, Brian Kotek [EMAIL PROTECTED] wrote:
You're opening yourself up to huge potential liability if anyone ever steals
these numbers.
You may want to check out Shift4. They are pretty cheap and are
pretty
reliable. I used to work for them and trust me.. Security is #1 for
them.
There's another good reason to look at Shift4. They have a tokenization
technology in place which allows you to save a token that links to that
On 5/22/08, Jessica Kennedy [EMAIL PROTECTED]
wrote:
I need some help finding a secure way to store credit cards on a website I
am working on. I know, I know you shouldn't do it unless you absolutely
MUST, but it looks like I absolutely must, sad to say. I have to set up
reoccurring
19 matches
Mail list logo
