Best Way To Secure Identity Data Transfers?
Posted: Thu Jan 14, 2010 1:20 pm
My client wants to have subscribers transfer identity data from their service to his as part of a service agreement. They'll get a service in return. I am under NDA and am not permitted to explain anything more about why. It will be everything but passwords. He plans to get certified and audited every year to be in compliance with USA and international standards such as Sarbanes-Oxley and other security standards.
What is the best practice way to transfer identity data with PHP? What encryption standard is supported by the most hosts in 2010? What compression? What web service API would you recommend? What other security practices should we use?
Unfortunately I don't often get a chance to do contracts dealing with data security, compression, encryption, and web services. I'm mostly building web tools for clients or mom and pop small business websites. So, I'm needing advice to help me catch up with the industry. I mean, I haven't made a SOAP call since the 1990s with Visual Basic, following an example out of an MSDN Magazine, so I lack some experience on what the latest techniques are.
What is the best practice way to transfer identity data with PHP? What encryption standard is supported by the most hosts in 2010? What compression? What web service API would you recommend? What other security practices should we use?
Unfortunately I don't often get a chance to do contracts dealing with data security, compression, encryption, and web services. I'm mostly building web tools for clients or mom and pop small business websites. So, I'm needing advice to help me catch up with the industry. I mean, I haven't made a SOAP call since the 1990s with Visual Basic, following an example out of an MSDN Magazine, so I lack some experience on what the latest techniques are.