[ic] CC Encryption
Kevin Walsh
interchange-users@icdevgroup.org
Tue Jun 11 23:29:02 2002
>
> Since you have obviously thought about the reasons behind not passing CC
> info in the plain and have chosen to ignore them. I'm just going to toss
> this in the ring. I have no idea how secure it would be...
>
> I suggest putting the order into PDF format prior to mailing it. Almost
> everyone has Acrobat and you might even be able to password protect the
> file.
>
> Someone please correct me if I am wrong, but wouldn't this reduce the
> chance of someone easily picking the CC number out of an email?
>
I doubt that a password-protected PDF file will be any more secure
than PGP or GnuPG.
I'm sure that you could come up with a whole host of weird suggestions,
such as encoding the card number into a PNG image file and sending
HTML-encoded order emails, but the fact of the matter is that none
of them will be secure enough to stop you losing your merchant account
if you are caught.
I suggest that you either take the time to install PGP/GnuPG, or that
you use some form of automated card payment processor.
--
_/ _/ _/_/_/_/ _/ _/ _/_/_/ _/ _/
_/_/_/ _/_/ _/ _/ _/ _/_/ _/ K e v i n W a l s h
_/ _/ _/ _/ _/ _/ _/ _/_/ kevin@cursor.biz
_/ _/ _/_/_/_/ _/ _/_/_/ _/ _/