Cross Site Scripting or Redirects?
Posted on 2012-03-20
Here's my problem:
I have a site that contains sensitive Law Enforcement data. A few state governments are stepping in and saying that since I am a private company, people cannot share the data they have with me. We've been doing the same thing for over 10 years and now were running in to problems.
One of my forms that collect the sensitive data is going to be owned by a government entity, How can I pull data and insert data in to a sql db that is maintained on a seperate server than my website. Is it SAFE to do so without compromising all the data?
Can you think of any other way that users can fill in these sensitive forms and it all be handled by the server of the government. I have full access to both servers so that's not an issue, I'm just wondering what's the most secure and safeset way to send data and get data across two different sites?