|
Posted by Chris Mattern on March 27, 2008, 5:05 pm
If you were Registered and logged in, you could reply and use other advanced thread options
> I'm building a CGI eCommerce store and I'm looking for ways to create
> a decent 2 way encryption. Of course in a scripted language, I don't
> want my key in the script itself, but would rather store it somewhere
> obfuscated such as in a compiled C++ binary. (I know it doesn't help -
> much-, but defense in layers)
>
> A .NET programmer friend of mine uses a method that involves
> generating a hash from the Volume ID of the hard drive to use as a
> key. I like this approach, but am wary of hardware/software changes
> that will break my key.
>
> Am I going about this the correct way? Is there a better method for
> creating a decently secure 2 way encryption using a scripted language?
>
> Any help is very much appreciated. Thanks.
>
You don't. Do it in your server. SSL. HTTPS. Get yourself a
signed certificate. Anything is playing with fire.
--
Christopher Mattern
NOTICE
Thank you for noticing this new notice
Your noticing it has been noted
And will be reported to the authorities
| 
XML site map