• Global community
    • Language:
      • Deutsch
      • English
      • Español
      • Français
      • Português
  • 日本語コミュニティ
    Dedicated community for Japanese speakers
  • 한국 커뮤니티
    Dedicated community for Korean speakers
Exit
0

Data encryption recommendation

Participant ,
Sep 21, 2006 Sep 21, 2006

Copy link to clipboard

Copied

Can someone suggest a CF solution to encrypt sensitive data to a database? I need to encrypt passwords and credit card data, im not sure that any CF tags such as Hash() encrypt(), etc would work well considering they require a key that isnt hidden or encrypted. Ideas? Recommendations? Thanks!
TOPICS
Advanced techniques

Views

293

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
New Here ,
Sep 21, 2006 Sep 21, 2006

Copy link to clipboard

Copied

You have to installed Sun's unlimited length encrypt policy, but you can do AES 256 using the coldfusion which is recommended for PCI compliance. You can cfencode the file that contains the key to keep it out of clear text.

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Advocate ,
Sep 21, 2006 Sep 21, 2006

Copy link to clipboard

Copied

LATEST
Read up on PCI though ( http://www.usa.visa.com/business/accepting_visa/ops_risk_management/cisp.html), encryption is only the tip of the iceberg and securing keys in a scripted environment is VERY difficult and virtually impossible in a shared environment. You should reevaluate the need to store credit card data at all. There are options available that give you all the same control without the need for your application to store the information. Google "secure credit card tokenization" and you should see some options. Good luck.

Votes

Translate

Translate

Report

Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Resources
Documentation