On Wed, Aug 11, 2004 at 01:01:23AM -0700, Bart Simpson wrote: > > --- mock <[EMAIL PROTECTED]> wrote: > > > This is about to go out to CPAN, but since it seems > > there is some question > > as to how to do this, I'll send it out a little > > early. Attached is a module > > for safely encrypting and storing credit cards using > > the Business::OnlinePayment > > interface. It uses a public RSA key and > > Crypt::OpenSSL::RSA to encrypt a > > randomly generated Blowfish symetric key, which is > > used with Crypt::CBC to > > encrypt the creditcard details. Also included is a > > module for reversing the > > transaction given the RSA private key. This allows > > one to store creditcards > > safely on the server, by not putting the private RSA > > key on the same machine. > > To retrieve the cards, simply pull the data to an > > offline machine, and > > decrypt using the RSA private key. Assuming you > > aren't an idiot and leave > > the private key somewhere internet accessible, this > > should be as proof against > > hackers as any other credit card processing. > > > > enjoy > > > > mock > > > > This sounds really awesome. Thanks. just what we need. > > Can one key decrypt the whole batch of cards? >
Yes, you only need one RSA public/private key pair to decrypt everything. There's a script included in the tarball to make the key pair. mock -- Report problems: http://perl.apache.org/bugs/ Mail list info: http://perl.apache.org/maillist/modperl.html List etiquette: http://perl.apache.org/maillist/email-etiquette.html