Thank you Duane and thank you Brian for the suggestions.
To advise: The requirement is **beyond** transfer of recordings.
The requirement is to *protect* sensitive data as originally outlined in
my first post, on the event the physical machine is compromised.
We have given much thought to this and not only are we enabling hardware
based encryption which some bios and hard-drives offer in case the HD is
stolen, but also we have a data self destruct option after 3 failed
login attempts in a 60 second period.
The ONLY part that is pending is to protect the sensitive data from
someone who may acquire physical access to the terminal.
As mentioned, the login data is critically important. Probably I
wasn't explicitly clear - though it should have been quite obvious from
the subject " Protecting & Encrypting PHP Codes in an Asterisk Install.
". ** We also want to protect our PHP code ** as the algorithm and
logic of encrypting recorded calls are in the PHP files.
To be a little more explicit on what we are recording for the client:
Credit Card and Personal data -- which by law is required to be protected.
Yes, I am being **extremely** paranoid, however with regards to
security, one cannot be paranoid enough, specially when it comes to CC
and personal data.
/*
Kind regards,
Reza.*/
--
*
*FOUNDER & SR. TELECOM ANALYST*
/VOIPERNETICS COMMUNICATIONS <http://www.voipernetics.com/>/*
NATION WIDE DIDS, SIP TRUNKS & VOIP 911.
PARTIAL / FULL VIRTUAL PRI - NO CONTRACTS!
HOSTED PBX & TERMINATION SERVICES.
TEL: 647-476-2067
