Hello everyone: I have a question regarding saving credit card information to a database. This is what I normally do although my preference is not to do it at all of course:
1. use a SSL connection 2. encrypt with a passphrase obtained from the user 3. send the encrypted data to a database and then using something further like ENCODE in the case of MySQL. Then, to show data to the user I reverse the process. My question is: what is the safest way if any, to obtain critical data from multiple users and show this data to others. This data will be internet accessible on a shared hosting environment. This is for someone who insists in having the credit card information on the database, against my advise and who knows why. I figured using encryption would take care of that but it is limited to one user or at least one user knowing the passphrase. Now this application needs to be expanded to have multiple sale representatives. How do I go about that! Thank you for your help. Alvaro Zuniga
