At 11:39 AM -0400 8/12/10, Joshua Kehn wrote:
Would one option be to have a table of unencrypted SSN's with an
encrypted id for the user. So you could search the SSN's and then
connect them, however if the table was dumped you wouldn't be able
to link it directly to the person (as it would just have a SSN and
an id).
Regards,
-Josh
No, the problem here is to keep the database from containing any raw
SS#. It is absolutely necessary to encrypt the data.
The question is:
1. Is it legal?
2. How to do it?
Cheers,
tedd
--
-------
http://sperling.com/
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
