A quick note: are you confident that it is lawful to retain credit card
information? I have a strong feeling it's not, at least here in the UK.
That said I'm sure many (most?) companies do anyway, maybe just as
hackerbait...
- simon
"Lame, John" wrote:
> Hello everyone.
>
> Sorry for the off topic post, but I'm not sure where to turn at this point.
> We receive credit card information (and we are using SSL) and we would
> simply like to encrypt the data before we place it in the database and
> decrypt it after retrieving it. Now I have written my own two-way
> encryption
> algorithm but we would rather be able to tell our customers that we
> use some sort of recognized standard. I searched through the archives
> for this list and I spent considerable time reading about the Java
> Cyptography Extensions but I failed to find a simple example of encrypting
> and then decrypting a String. All I could find was stuff about
> public/private key pairs and certificates, but I'm not planning on sending
> the data accross a network so this doesn't seem to help.
>
> Suggestions?
>
> John
>
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
