Encrypting data does not turn them secure, by itself. If someone has access to the cryptographic key, the encryptation worths nothing.
So, about security, you don't consider only the framework. But you DB access, your server password, etc. On Wed, Nov 13, 2013 at 5:04 PM, sasogeek <[email protected]> wrote: > A friend wants me to build a loaning system applocation for him. This raises > a few flags considering that it deals with money and people's personal > information. But I'm particularly concerned about the security of web2py... I > want to be able to assure him that the system will be secure. I have no > experience with security or cryptography. Can I go ahead and tell him that > the system will be secure? Or there are some security measures I can take... > Like automatically encrypting data? > > -- > Resources: > - http://web2py.com > - http://web2py.com/book (Documentation) > - http://github.com/web2py/web2py (Source code) > - https://code.google.com/p/web2py/issues/list (Report Issues) > --- > You received this message because you are subscribed to the Google Groups > "web2py-users" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > For more options, visit https://groups.google.com/groups/opt_out. -- Resources: - http://web2py.com - http://web2py.com/book (Documentation) - http://github.com/web2py/web2py (Source code) - https://code.google.com/p/web2py/issues/list (Report Issues) --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/groups/opt_out.
