encryption (of credit cards)

J

Joe Van Dyk

http://monkeycharger.googlecode.com/svn/trunk/app/models/credit_card.rb

Ignore the fact that it's a ActiveRecord model and tell me if the
encryption that I'm using for encrypting the credit card numbers is
reasonable. Did I screw anything up?

What would you change? I imagine I could generalize out the
encryption bits, right?
Click to expand...

One alternative I came up with is to use some combination of a unique
user id, the credit card's cvv, and a secret key on the server for
encrypting the credit card number. So, whenever you wanted to
authorize a card, you had to provide the unique user id and the CVV
for the card. I figure that would make a bit safer.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

[SUMMARY] Checking Credit Cards (#122) 17
AES encryption 5
Fundamentals of Financial Management Concise 7e Brigham Houston 0
The devolution of English language and slothful c.l.p behaviors exposed! 50
On the development of C 211
need help with a cart I inherited, need to increase number of total characters allowed 3
In the Matter of Herb Schildt: a Detailed Analysis of "C: TheComplete Nonsense" 109
comp.lang.vhdl FAQ part 1 of 4: general 0

Members online

No members online now.
Total: 25 (members: 0, guests: 25)
Robots: 425

Forum statistics

Threads
473,769
Messages
2,569,580
Members
45,053
Latest member
BrodieSola

Latest Threads

Top