Re: Secure PHP - Credit Card processing system
Posted: Thu Mar 19, 2009 8:47 am
Where ever PHP is outputting the CC, make sure you have placed a proper encryption on the transmission. That is, if you are sending an email, encrypt (PGP). If you are sending a query to the database, encrypt the database connection.
The security of storing Credit Card information is considered as the single most important fact. It is a must to have a third-party to review your application and to do several penetration tests.
The security of storing Credit Card information is considered as the single most important fact. It is a must to have a third-party to review your application and to do several penetration tests.