Webot Graphics wrote:
I don't fully understand the security here.
Is https enough to mostly protect the transmission of credit card data?
If you are only talking about protecting the actual transmission, then
Yes. HTTPS is enough.
However, it is probably even more important to pay attention to what
happens to the data at both ends of the https transaction.
* Neither side should store the information longer than necessary to get
approval.
* Niether side should re-transmit the data via an insecure protocol
(email especially).
--lonnie
_______________________________________________
UPHPU mailing list
[email protected]
http://uphpu.org/mailman/listinfo/uphpu
IRC: #uphpu on irc.freenode.net
