473,327 Members | 1,967 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 473,327 software developers and data experts.

q; Keeping Credit Card in the database

Keeping Credit Card in the database:
If I am going to keep credit card information in the database, what process
and procedure I need to pay attention so that I would not be in trouble
because of security in web application, database, and in the building that
the server is in. Any guidelines?

Jul 11 '07 #1
4 1389
Hello JIM.H.,

Use SSL to have the postback encryption, encript session state and DB content

---
WBR, Michael Nemtsev [.NET/C# MVP].
My blog: http://spaces.live.com/laflour
Team blog: http://devkids.blogspot.com/

"The greatest danger for most of us is not that our aim is too high and we
miss it, but that it is too low and we reach it" (c) Michelangelo

JKeeping Credit Card in the database:
JIf I am going to keep credit card information in the database, what
Jprocess
Jand procedure I need to pay attention so that I would not be in
Jtrouble
Jbecause of security in web application, database, and in the building
Jthat
Jthe server is in. Any guidelines?
Jul 11 '07 #2
Some of this will depend on the applicable data laws in your country. For
example the UK data protection act states how long you're allowed/required
to keep data for and that sort of thing.

All transactions should be done over SSL, and the credit card details should
be encrypted in the database, preferably using a key with salt.

Regards,

Tim.
Jul 11 '07 #3
"Tim Payne" <ti*@branded3.comwrote in message
news:OB**************@TK2MSFTNGP04.phx.gbl...
Some of this will depend on the applicable data laws in your country. For
example the UK data protection act states how long you're allowed/required
to keep data for and that sort of thing.
Very true. In addition, you need to be registered with the Information
Commissioner's Office before you can store certain types of data, especially
personal and financial data like this...
All transactions should be done over SSL, and the credit card details
should be encrypted in the database, preferably using a key with salt.
Yes, definitely.
--
Mark Rae
ASP.NET MVP
http://www.markrae.net

Jul 11 '07 #4
On Wed, 11 Jul 2007 06:04:06 -0700, JIM.H.
<JI**@discussions.microsoft.comwrote:
>Keeping Credit Card in the database:
If I am going to keep credit card information in the database, what process
and procedure I need to pay attention so that I would not be in trouble
because of security in web application, database, and in the building that
the server is in. Any guidelines?
You also need to look at database level encryption

--
http://bytes.thinkersroom.com
Jul 11 '07 #5

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

8
by: sam1967 | last post by:
I know how to build forms with ASP and process user input. Now i want to take credit card payments via a form. i will then download the details and process them via our credit card machine. do...
6
by: Simon Wigzell | last post by:
My client wants to have credit card information fields on his forms for his website visitors to be able to buy his wervices by credit card. The credit card info - Brand, number and expiry date will...
10
by: dries | last post by:
A friend of mine has a problem with his credit card validation routine and it is probably a simple thing to solve but I cannot find it. It has to do with the expiry dates. What happens is that as...
7
by: gj | last post by:
I have an application in Access 97 I will be rewriting in the latest version of Access in 6 months. In the meantime, does anyone know of an ActiveX control I can add into an Access 97 form to...
4
by: gl | last post by:
I have just started a project that's going to do very heavy credit card processing through asp.net and i had some questions. I've never really done any cc processing through code and I wasn't sure...
6
by: Arne | last post by:
What would be a good component for processing credit cards? (I am not using commerce server.) Would I need to encrypt the credit card column in the database?
3
by: mikekissman | last post by:
I've built an online reservation website in ASP .NET with a SQL Server backend. It allows customers to search for available resources, than charges their credit card a fee to hold the reservation....
11
by: Paul Furman | last post by:
I'm setting up credit card payment through authorize.net and they have the option to send a POST string back to my site once complete. I'm not sure how to proceed. They don't have much to read...
1
by: securedcardss | last post by:
http://card.2youtop.info secured credit card card credit instant secured card cash credit secured card
0
by: DolphinDB | last post by:
Tired of spending countless mintues downsampling your data? Look no further! In this article, you’ll learn how to efficiently downsample 6.48 billion high-frequency records to 61 million...
0
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
1
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
0
by: Vimpel783 | last post by:
Hello! Guys, I found this code on the Internet, but I need to modify it a little. It works well, the problem is this: Data is sent from only one cell, in this case B5, but it is necessary that data...
0
by: jfyes | last post by:
As a hardware engineer, after seeing that CEIWEI recently released a new tool for Modbus RTU Over TCP/UDP filtering and monitoring, I actively went to its official website to take a look. It turned...
1
by: PapaRatzi | last post by:
Hello, I am teaching myself MS Access forms design and Visual Basic. I've created a table to capture a list of Top 30 singles and forms to capture new entries. The final step is a form (unbound)...
1
by: CloudSolutions | last post by:
Introduction: For many beginners and individual users, requiring a credit card and email registration may pose a barrier when starting to use cloud servers. However, some cloud server providers now...
1
by: Defcon1945 | last post by:
I'm trying to learn Python using Pycharm but import shutil doesn't work
0
by: Faith0G | last post by:
I am starting a new it consulting business and it's been a while since I setup a new website. Is wordpress still the best web based software for hosting a 5 page website? The webpages will be...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.