James
I think you're over complicating your business rules; if you store the
credit card details why do u need to access them again at the client, don't
u just charge the card for subsequent purchases automatically?
Stew
> -----Original Message-----
> From: James Sleeman [SMTP:[EMAIL PROTECTED]]
> Sent: 15 May 2000 12:27
> To: [EMAIL PROTECTED]
> Subject: Storing Credit Card details securely
>
> A current client wants (against my recommendation) to store credit card
> details so as to enable future purchases of customers to be more automated
> (a subscription based system). Obviously this needs to be done in as
> secure a manner as possible. I just wondered if anybody could give me
> some pointers to proven ways of doing this in CF.
>
> My thoughts would be to use some public key encryption system to encrypt
> the sensitive data and then have the administrator supply the private key
> to the CF application for the limited time that the data needs to be
> worked with (perhaps on a per-access basis), I am advantaged by the fact
> that this will be on a local server to the client and so the private key
> could be stored on some removeable media (i.e disk) physically locked away
> from prying eyes and only inserted into the server drive at the
> appropriate time. Is there some way to employ strong public key
> encryption from within CF ?
>
> Better ideas ?
>
> Thanks...
> James Sleeman
> --------------------------------------------------------------------------
> ----
> Archives: http://www.eGroups.com/list/cf-talk
> To Unsubscribe visit
> http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or
> send a message to [EMAIL PROTECTED] with 'unsubscribe' in
> the body.
------------------------------------------------------------------------------
Archives: http://www.eGroups.com/list/cf-talk
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or send a
message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
