RSA Encryption in PHP?
Moderator: General Moderators
RSA Encryption in PHP?
Anyone know if it's possible to encrypt/decrypt data with a RSA Encryption using PHP ?
I need to store Credit card numbers in a database and I need it to be really secure..
Encrypting/decrypting the credit cards numbers seems to be the best way.. + Other things..
I found some perl/c scripts that encrypt and decrypt RSA but I'd prefer to do it directly inside the PHP so I have no external 'accessories' that do the job for me.
Let me know if you guys know anything about that !
Thanks,
--Ben
I need to store Credit card numbers in a database and I need it to be really secure..
Encrypting/decrypting the credit cards numbers seems to be the best way.. + Other things..
I found some perl/c scripts that encrypt and decrypt RSA but I'd prefer to do it directly inside the PHP so I have no external 'accessories' that do the job for me.
Let me know if you guys know anything about that !
Thanks,
--Ben
encrypted or not, i would not store CC data on the web server...if you MUST keep the data, it should be placed in a machine behind the network firewall and not be exposed at all. Not matter how safe, secure encryption is, it can be broken...
I wouldn't store CC data at all, I would keep the transaction approvals etc from the payment gateway as proof, but not the card details. Have the customer re-enter it each time...if its a PITA to the customer, tough, tell them its safer...
I wouldn't store CC data at all, I would keep the transaction approvals etc from the payment gateway as proof, but not the card details. Have the customer re-enter it each time...if its a PITA to the customer, tough, tell them its safer...
The thing is that the client don't want to deal with a gateway.. they have a little restaurant and want to be able to get reservations from the internet
If a client make a reservation over the internet, they enter their credit card number and the guy in the restaurant will get a popup saying that there is a new reservation and will enter the credit card number in his machine and then delete the credit card record from the database
If a client make a reservation over the internet, they enter their credit card number and the guy in the restaurant will get a popup saying that there is a new reservation and will enter the credit card number in his machine and then delete the credit card record from the database
I suppose internet reservations could leave them open to abuse, i.e someone (falsely) books 15 tables.
Rather than have a credit card number as a show of 'good faith' you could just ask for name, number of people and an email address, then send an email asking them to visit/click a link to confirm *shrug*
Rather than have a credit card number as a show of 'good faith' you could just ask for name, number of people and an email address, then send an email asking them to visit/click a link to confirm *shrug*
The client already have a system similar to that but have a lot of problems reaching the data for the credit cards
They don't want to change the way they do business.. they want to improve the system and that's why I'm here talking about that
What I need is a way to encrypt using RSA Encryption..
If it's not possible to do it directly using PHP I'll use a little c program or a perl script and everything will be okay.. but I'd prefer to do it using php code.
Thanks
They don't want to change the way they do business.. they want to improve the system and that's why I'm here talking about that
What I need is a way to encrypt using RSA Encryption..
If it's not possible to do it directly using PHP I'll use a little c program or a perl script and everything will be okay.. but I'd prefer to do it using php code.
Thanks