Our golf courses use a web based POS application that has Bar code scanners using a keyboard wedge type. This means anything read by the scanner is simply input the same as if a user typed the characters at a keyboard. The Cash drawers are also pretty simple. They are triggered by a command over a serial port similar to printing. All it does is release a latch on the cash drawer, a spring pushes the drawer out.
The security issue is protecting the CC data from a downloaded key-logger virus when the user browses the Internet. We are thinking about setting up the local browser to be allowed to communicate only with the POS web application. Then install a Citrix client to launch an IE browser for the user to be free to browse the Internet.
Has anyone setup a similar configuration using Citrix for secure web browsing? Any better ideas out there are appreciated?