I have a generic question about internet security. We have developed a couple of forms for high school, things like for bus registration, and parking permit application.
What we basically do is to develop a web form and student can fill their information like name, address phone, bus service am pm etc, then submit to us.(using post and then stored in our sql server)
Our sql server is pretty secured and I use stored procedure to accept from the form and insert into database.
Is it a regular approach for case like this to do on internet? how many percent? how safe is it? We are not very strictly ask for security, but we don' want to expose student data accidently to outside world except for our school administration. I'm just wondering when doing post, how safe it is?
We are planning to do more forms like this, but I think I need to know how secure it is before doing more.
And if we mail the paper copy form for students to fill in, usually ask signature, but on line form we don't. If doing this is comparatively OK, what is the easiest way to handle signature issue?
Thanks in advance for any ideas