hi john -
in the early days of eCom apps i participated in
desiging i was against storage of credit cards.
the reasoning being don't do it if it isn't necessary
and why open one's self upto potential liabilities.
well, for some transaction scenarios it is likely
necessary. i see most consumer oriented web transactions
as akin to traditional mail order catalog transactions
and i'd be willing to bet that every one of those
systems store credit card data.
as time rolled on, it turns out that a merchant
can potentially run the risk of not being able to
collect on a pre-authorized amount against a card
if the authorization time has expired (eg back order,
external billing systems troubles -- both of which
have happended and are real issus).
i came to the conclussion that we may have to store
the card info (eg number, expiration, bill to) for
at least some period of time ... till the merchant
has collected the last penny ... after which it may
be wise to purge the card data. as such, we chose to
store the card info internally for a period of time
in an encoded format (our own internal code per a
java security algorithms book).
around that same time i believe amazon.com started
advertising that it is actually more secure (and
easier for you to make repeat purchases) for them
to perminently store the card on their site (the
card data will be transmitted over the web one less
time, the data won't potentially be stored in a
kiosk browser cache, etc).
at this time and depending on the type of transactions
your system is doing, i believe following the amazon.com
model is good (it helps greatly if customers have faith
and trust in your brand).
hope this helps,
- jame
"Lame, John" wrote:
>
> >>We receive credit card information (and we are using SSL) and we would
> >>simply like to encrypt the data before we place it in the database and
> >>decrypt it after retrieving it.
>
> >Why do you need to decrypt the number?
> >You have the encrypted number in your database.
> >You receive a number that is not encrypted.
>
> The short answer is that management wants two-way encryption.
> I suppose a longer answer is that we probably need to decrypt
> the credit card number in order to bill our customers. (I say
> probably because I'm new to this project so I'm unfamiliar with
> most of what it does.).
>
> John.
>
> p.s. I'm making progress btw. http://www.cryptix.org seems to have
> a usefull library of tools for this sort of this thing. If I do come up
> with something short and sweet. I'll post.
>
> ___________________________________________________________________________
> To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
> of the message "signoff SERVLET-INTEREST".
>
> Archives: http://archives.java.sun.com/archives/servlet-interest.html
> Resources: http://java.sun.com/products/servlet/external-resources.html
> LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html