-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Simple, don't keep credit card information on your servers. If my
understanding is correct of the situation, you really just need the
last 4 digits after the initial verification is done.
Eventually you _will_ get hacked, and then you will be sending out
letters to your customers about why they need to cancel their cards
and get new ones (ala EggHead.com)
Of course, with the new one time credit card numbers thing
(discovercard and visa have them) this doesn't apply. You could
publish the numbers on your front page and it wouldn't matter.
- --b
> -----Original Message-----
> From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, January 10, 2001 3:21 PM
> To: CF-Talk
> Subject: OT - encryption for sql 7.0
>
>
> I've tried to get some help for this from the sql lists but
> haven't got any
> response, so I'm going with the trusty CF group on this. Is
> what I'm looking
> for is software to encrypt certain table fields in a sql 7.0
> database. I
> would also like to here from any of you on how you handle
> sensitive data,
> either on the database side, or through your applications.
> I'm referring to
> things like credit card information.
>
> Thanks,
>
> Rick
>
>
>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
