Steve, I don't believe OneTimePad works on numbers either (ie. credit card numbers, social security numbers). I would probably find an implementation of blowfish encryption in java and hook into it with WiTango.
Mike "Fogelson, Steve" wrote: > > Has anyone done this in the shipping cart software an databases? > > I have used Shopzone for a shopping cart in the past. Last year they > released an new version that would encrypt the credit card info within the > database. There was a group of hackers in Russia that hacked into commerce > databases and stole credit card info. Shopzone revised their cart incase > that someone hacked into customer commerce databases. If they did, they > would still have to decrypt the cc info. > > In their software, you create your own "key" by moving the cursor all over > the screen. I suppose some sort of random character generation. This unique > "key" is used to encrypt and decrypt the cc info. > > As I have mentioned before, I am writing my own Witango Store. For > additional security, I would like to encrypt the cc info fields within the > database. I don't expect that someone would hack my sites, but you never > know. > I looked at the Witango <@CIPHER> metatag. it states BitRoll, Caesar, and > Rot13 are not secure at all, and OneTimePad is only as secure as the keys > are managed and generated. > > Anyone have any recommendations or experience in this. > > Thanks > > Steve Fogelson > Internet Commerce Solutions > ________________________________________________________________________ > TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED] > with unsubscribe witango-talk in the message body -- Mike Tyranski Lynch2 p: 847.608.6900 f: 847.608.9501 http://www.lynch2.com ________________________________________________________________________ TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED] with unsubscribe witango-talk in the message body
