Solved

Credit card security

Posted on 2001-06-15
12
239 Views
Last Modified: 2013-12-24
How can i send securely Credit card information to the server after form submisson using ColdFusion?
Is it necessary to have SSL installed on the server?
Where can i get information regarding?
Is there any custom tag that securely sends Credit card information to the server? Pl. help...
0
Comment
Question by:manoher
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 2
  • 2
  • +3
12 Comments
 
LVL 3

Expert Comment

by:TEFKASG
ID: 6196772
>>Is it necessary to have SSL installed on the server?

  Actally that's all you need as far as I know.  I don't know if Cold Fusion has any special tags for it, as I haven't had to use any.  :>)
0
 
LVL 3

Expert Comment

by:TEFKASG
ID: 6196790
0
 
LVL 3

Expert Comment

by:TEFKASG
ID: 6196802
Also they can send you load of info on web business security.  :>)
0
Turn your laptop into a mobile console!

The CV211 Laptop USB Console Adapter provides a direct Laptop-to-Computer connection for fast and easy remote desktop access with no software to install.

 
LVL 3

Expert Comment

by:TEFKASG
ID: 6196814
Here for the gerneral site overview:

https://www.verisign.com/
0
 
LVL 3

Expert Comment

by:TEFKASG
ID: 6196817
0
 
LVL 37

Expert Comment

by:meverest
ID: 6197078
for ssl, don't overlook www.thawte.com - in many cases cheaper, in some cases easier, and just the same result.

for credit card processing, you could also look at a solution like this: www.xilo.com/veripay - that is one for australian $$ - not sure of any in other currencies.

cheers.

0
 
LVL 37

Expert Comment

by:meverest
ID: 6197082
oh - what i meant to say about that veripay service is that if you use something like that, you don;t even need SSL coz the system provides SSL already.

cheers.
0
 
LVL 11

Expert Comment

by:jimmy282
ID: 6197675
what about autorize.net

their website is http://authorizenet.com

Jimmy
0
 
LVL 19

Expert Comment

by:cheekycj
ID: 6198492
SSL is not something you should purchase from a third part.. your web service provider should already have it.

The setup process should be...
your billing form doesn't need to be but for user's piece of mind should be on SSL port.

The page that is submits to MUST be on SSL no matter what.

I also recommend authorize.net, mentioned by Jimmy.  I use them and they are very good.

CJ
0
 
LVL 19

Accepted Solution

by:
cheekycj earned 100 total points
ID: 6198495
FYI: SSL is encryption at the network layer.. so no sw or custom tags are needed... any and all information that is communicated over an SSL port is encrypted by the server and sent over.. so you don't have to worry about implementing an encryption scheme or using some encryption algorithm.

CJ
0
 

Expert Comment

by:tionghoe
ID: 6198706
There are 2 parts to the issue. SSL encryption must be configured on the web server. Configurations include the encryption levels (128,56 or 40-bits encryption), the SSL port (normally is 443) to be used and which of the web directories is to use the SSL. You may need to have a SSL certificate installed on the web server. The SSL certificate may be purchased from a CA.
0
 

Expert Comment

by:hansamryan
ID: 6229097
You might want to use an encryption method once it card is put into the DB, because sure the SSL encrypts it from the pc-->Server but from there its up for grabs.
0

Featured Post

Optimum High-Definition Video Viewing and Control

The ATEN VM0404HA 4x4 4K HDMI Matrix Switch supports 4K resolutions of UHD (3840 x 2160) and DCI (4096 x 2160) with refresh rates of 30 Hz (4:4:4) and 60 Hz (4:2:0). It is ideal for applications where the routing of 4K digital signals is required.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you don't have the right permissions set for your WordPress location in IIS, you won't be able to perform automatic updates. Here's how to fix the problem.
Original post  on Monitis Blog. Web performance monitoring is broken into two camps: passive and active. Passive monitoring is defined as looking at real-world historical performance by monitoring actual log-ins, site hits, clicks, requests for …
The purpose of this video is to demonstrate how to make a WordPress Site faster and smaller in size by cleaning up the database. This will be demonstrated using a Windows 8 PC. Plugin WP Optimize will be used. Go to your WordPress login page. T…
The purpose of this video is to demonstrate how to set up an RSS Feed on a WordPress Website. This will be demonstrated using a Windows 8 PC. Feedburner will be used for this demonstration. Go to your WordPress login page. This will look like the…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question