: ECommerce checkout security I'm developing an eCommerce site and using SagePay as a card processor. Customers will enter their delivery/invoice details into a form which is then submitted to a

I'm developing an eCommerce site and using SagePay as a card processor.

Customers will enter their delivery/invoice details into a form which is then submitted to a checkout page. This page encrypts the data and sends it over to SagePay to process the payment. No credit card details are entered or stored on my site, this is all handled by SagePay. The address details only are stored in my database.

My question is what sort of security do I need to implement ?

As I see it, my options are:

Use an SSL to provide a secure site
Encrypt the address details before insertion into the database (I'm intending to do this anyway)
Do nothing

For reference, the site is written in Coldfusion.

10.02% popularity Vote Up Vote Down

: How does Google Analytics track re-entry into a goal funnel? How does Google Analytics tracks users? Is each user is tracked as unique user? I have a doubt about a goal flow in Google Analytics.

@Rivera981

Posted in: #Analytics #Goals #GoalTracking #GoogleAnalytics

1 Comments

: How to install OSQA using Xampp on Windows 7 32bit? I want to install OSQA using Xampp on Windows 7 32bit. I've followed the instructions on this tutorial until the "Install the database server"

@Rivera981

Posted in: #Django #Python #Xampp

0 Comments

: Wordpress theme usage rights with GPLv2 I've been searching for a great looking wordpress theme to use on a small magazine website idea that I had and I've just found one that would be ideal,

@Rivera981

Posted in: #Licenses #Wordpress

2 Comments

: I have “CMS” made by myself with PHP and I cannot make my websites appear on google I have developed an Admin Panel that you can use to change conents on the website. It works basically

@Rivera981

Posted in: #Cms #Php

2 Comments

Login to post a comment!

1 Comments

Sorted by latest first Latest Oldest Best

@Looi9037786

You'll want to use SSL for any pages in the checkout process, for sure. Encrypting address data in your own database is optional. If someone were able to access your database, they'd likely be able to get your encryption key also, so that would provide little defense. Also name and address are not nearly as sensitive of information as credit card data.

10% popularity Vote Up Vote Down

Feed

: ECommerce checkout security I'm developing an eCommerce site and using SagePay as a card processor. Customers will enter their delivery/invoice details into a form which is then submitted to a

More posts by @Rivera981

: How does Google Analytics track re-entry into a goal funnel? How does Google Analytics tracks users? Is each user is tracked as unique user? I have a doubt about a goal flow in Google Analytics.

: How to install OSQA using Xampp on Windows 7 32bit? I want to install OSQA using Xampp on Windows 7 32bit. I've followed the instructions on this tutorial until the "Install the database server"

: Wordpress theme usage rights with GPLv2 I've been searching for a great looking wordpress theme to use on a small magazine website idea that I had and I've just found one that would be ideal,

: I have “CMS” made by myself with PHP and I cannot make my websites appear on google I have developed an Admin Panel that you can use to change conents on the website. It works basically

Login to post a comment!

1 Comments

Back to top | Use Dark Theme