Has anyone done this in the shipping cart software an databases?
I have used Shopzone for a shopping cart in the past. Last year they
released an new version that would encrypt the credit card info within the
database. There was a group of hackers in Russia that hacked into commerce
databases and stole credit card info. Shopzone revised their cart incase
that someone hacked into customer commerce databases. If they did, they
would still have to decrypt the cc info.
In their software, you create your own "key" by moving the cursor all over
the screen. I suppose some sort of random character generation. This unique
"key" is used to encrypt and decrypt the cc info.
As I have mentioned before, I am writing my own Witango Store. For
additional security, I would like to encrypt the cc info fields within the
database. I don't expect that someone would hack my sites, but you never
know.
I looked at the Witango <@CIPHER> metatag. it states BitRoll, Caesar, and
Rot13 are not secure at all, and OneTimePad is only as secure as the keys
are managed and generated.
Anyone have any recommendations or experience in this.
Thanks
Steve Fogelson
Internet Commerce Solutions
________________________________________________________________________
TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED]
with unsubscribe witango-talk in the message body
