[ic] Credit Card numbers Stored Encrypted in SQL Database - N
o Answer Yet
Webb, Malcolm
malcolmw@upshot.com
Wed, 25 Apr 2001 13:00:09 -0700
Hi Dan-
That's true. But then, there is no cost to my customers if they decide to
switch to a competitor.
I understand that there are security issues with storing CC#s in the DB, but
there is no evidence to indicate that consumers will pick a safer site over
one that offers a more convenient buying experience.
If customers know that they do not need to re-enter any info the next time
they come back to your site, that represents a huge competitive advantage
for the merchant.
I'm not sure, but I would bet that most e-commerce packages will offer
"one-click" functionality out-of-the-box within the next year or so (I think
Yahoo! Store may already offer it). That means that to stay competitive,
merchants will need to offer it in their stores.
It's not clear to me why RedHat would care what merchants are storing - I
would bet that there's some type of disclaimer in the IC license that limits
their liability...
===========================================
Malcolm Webb
Product Manager
UpShot.com
voice: 650-623-2296
fax: 650-564-9780
email: malcolmw@upshot.com
web: http://www.upshot.com
===========================================
-----Original Message-----
From: Dan McFarland [mailto:dan@mailturtle.com]
Sent: Wednesday, April 25, 2001 12:46 PM
To: interchange-users@lists.akopia.com
Subject: Re: [ic] Credit Card numbers Stored Encrypted in SQL Database -
No Answer Yet
You can always set it up to use the MS or YAHOO! wallet features. This
would probably require quite a bit of programming though.
----- Original Message -----
From: Webb, Malcolm <malcolmw@upshot.com>
To: <interchange-users@lists.akopia.com>
Sent: Wednesday, April 25, 2001 2:42 PM
Subject: RE: [ic] Credit Card numbers Stored Encrypted in SQL Database - No
Answer Yet
> So is there no plan for IC to support the concept of "one-click" ordering?
> From a merchant's perspective that is a very attractive feature...
>
> ===========================================
> Malcolm Webb
>
> ===========================================
>
>
>
> -----Original Message-----
> From: Ron Phipps [mailto:rphipps@reliant-solutions.com]
> Sent: Wednesday, April 25, 2001 12:41 PM
> To: interchange-users@lists.akopia.com
> Subject: Re: [ic] Credit Card numbers Stored Encrypted in SQL Database -
> No Answer Yet
>
>
> > This does not answer the question at all. I've searched the list and
> havn't
> > found an answer to this question.
>
> Your question was why does IC 4.6.3 not store the cc info in the db (on
> disk). And Mike responded with the security problems associated with that
> method. He also mentioned that the folks at Redhat will not support the
> storing of CC info on disk to be retrieved through the admin interface.
You
> are probably on your own if you want to come up with a solution. Also
> please do not post your question every week to the list, this one has now
> been posted 3 times.
>
> -Ron
>
>
> _______________________________________________
> Interchange-users mailing list
> Interchange-users@lists.akopia.com
> http://lists.akopia.com/mailman/listinfo/interchange-users
>
> _______________________________________________
> Interchange-users mailing list
> Interchange-users@lists.akopia.com
> http://lists.akopia.com/mailman/listinfo/interchange-users
_______________________________________________
Interchange-users mailing list
Interchange-users@lists.akopia.com
http://lists.akopia.com/mailman/listinfo/interchange-users