That should be all the libraries you need.
As far as the UI goes, it's nothing to crazy. We have a drop down that lists
all the CC (shows last 4 + expiration) we have on file for a customer. You
choose one and hit the 'process' button. From there it decrypts the card and
processes the payment. We store the key in the compiled code.
On Wed, Aug 24, 2011 at 5:54 PM, cubcrafters_it <
jason.navarrete@...> wrote:
*Waffqle Driggers*
*High End Dev, System Design, Profit Drinking
*
*:: 904.962.2887*
*:: waffqle@...*
*:: NO FAXES*
*
*
[Non-text portions of this message have been removed]
As far as the UI goes, it's nothing to crazy. We have a drop down that lists
all the CC (shows last 4 + expiration) we have on file for a customer. You
choose one and hit the 'process' button. From there it decrypts the card and
processes the payment. We store the key in the compiled code.
On Wed, Aug 24, 2011 at 5:54 PM, cubcrafters_it <
jason.navarrete@...> wrote:
> **--
>
>
> I completely understand.
>
> Pointers would be much appreciated though. Do you store the key in the
> customization, or have the employee enter the the key to decrypt? I see that
> I can potentially use the Rijndael class to do the heavy lifting, but the
> particulars of the UI setup are more what I'm after.
>
> Any other libraries I'd need to load?
>
> Thanks!
>
>
> --- In vantage@yahoogroups.com, Waffqle <waffqle@...> wrote:
> >
> > Hahaha. We can probably give you some pointers, but I'm not sure it would
> be
> > kosher for us to post the source of the system that stores our CCs.
> >
> > If there's a particular aspect your interested in, let us know.
> >
> > On Wed, Aug 24, 2011 at 4:48 PM, cubcrafters_it <
> > jason.navarrete@...> wrote:
> >
> > > **
> > >
> > >
> > > Anyone feel like posting some code?
> > >
> > > Jose, it'd be a great blog post. :)
> > >
> > >
> > > --- In vantage@yahoogroups.com, Jose Gomez <jose@> wrote:
> > > >
> > > > Yes its all a customization, had to bring in a few extra dll's for
> the
> > > > actual processing and the Encryption
> > > >
> > > > *Jose C Gomez*
> > > > *Software Engineer*
> > > > *
> > > > *
> > > > *checkout my new blog <http://www.usdoingstuff.com> *
> > > > *
> > > > *T: 904.469.1524 mobile
> > > > E: jose@
> > >
> > > > http://www.josecgomez.com
> > > > <http://www.linkedin.com/in/josecgomez> <
> > > http://www.facebook.com/josegomez>
> > > > <http://www.google.com/profiles/jose.gomez> <
> > > http://www.twitter.com/joc85>
> > > > <http://www.josecgomez.com/professional-resume/>
> > > > <http://www.josecgomez.com/feed/>
> > > > <http://www.usdoingstuff.com>
> > > >
> > > > *Quis custodiet ipsos custodes?*
> > > >
> > > >
> > > >
> > > > On Wed, Aug 24, 2011 at 2:30 PM, cubcrafters_it <
> > > > jason.navarrete@> wrote:
> > > >
> > > > > **
> > > > >
> > > > >
> > > > > That is awesome and now I want to know how you did it. :)
> > > > >
> > > > > Is it just all through a customization?
> > > > >
> > > > >
> > > > > --- In vantage@yahoogroups.com, Waffqle <waffqle@> wrote:
> > > > > >
> > > > > > We encrypt it all using AES-256 and only store the last 4 as
> > > plain-text.
> > > > > >
> > > > > > On Wed, Aug 24, 2011 at 12:03 PM, cubcrafters_it <
> > > > > > jason.navarrete@> wrote:
> > > > > >
> > > > > > > **
> > > > > > >
> > > > > > >
> > > > > > > Are you just obfuscating data being stored in UD fields?
> > > > > > >
> > > > > > >
> > > > > > > --- In vantage@yahoogroups.com, Waffqle <waffqle@> wrote:
> > > > > > > >
> > > > > > > > We ended up writing our own solution.
> > > > > > > >
> > > > > > > > On Tue, Aug 23, 2011 at 3:25 PM, cubcrafters_it <
> > > > > > > > jason.navarrete@> wrote:
> > > > > > > >
> > > > > > > > > **
> > > > > > > > >
> > > > > > > > >
> > > > > > > > > So we attended a webcast today on PCI-DSS (Payment Card
> > > Industry -
> > > > > Data
> > > > > > > > > Security Standard) presented by a regional auditing firm,
> and
> > > now
> > > > > our
> > > > > > > CFO
> > > > > > > > > wants to know more about securing customer's payment
> > > information.
> > > > > > > > >
> > > > > > > > > Are any of you willing to discuss how you're handling
> Credit
> > > Card
> > > > > data,
> > > > > > > > > specifically in 8.03 and earlier systems? I know that in
> E9,
> > > > > there's a
> > > > > > > PCI
> > > > > > > > > compliant module, but what about the older versions?
> > > > > > > > >
> > > > > > > > >
> > > > > > > > >
> > > > > > > >
> > > > > > > >
> > > > > > > >
> > > > > > > > --
> > > > > > > > *Waffqle Driggers*
> > > > > > >
> > > > > > > > *High End Dev, System Design, Profit Drinking
> > > > > > > > *
> > > > > > > > *:: 904.962.2887*
> > > > > > > > *:: waffqle@*
> > > > > > > > *:: NO FAXES*
> > > > > > > >
> > > > > > > > *
> > > > > > > >
> > > > > > > > *
> > > > > > > >
> > > > > > > >
> > > > > > > > [Non-text portions of this message have been removed]
> > > > > > > >
> > > > > > >
> > > > > > >
> > > > > > >
> > > > > >
> > > > > >
> > > > > >
> > > > > > --
> > > > > > *Waffqle Driggers*
> > > > > > *High End Dev, System Design, Profit Drinking
> > > > > > *
> > > > > > *:: 904.962.2887*
> > > > > > *:: waffqle@*
> > > > > > *:: NO FAXES*
> > > > > >
> > > > > > *
> > > > > >
> > > > > > *
> > > > > >
> > > > > >
> > > > > > [Non-text portions of this message have been removed]
> > > > > >
> > > > >
> > > > >
> > > > >
> > > >
> > > >
> > > > [Non-text portions of this message have been removed]
> > > >
> > >
> > >
> > >
> >
> >
> >
> > --
> > *Waffqle Driggers*
> > *High End Dev, System Design, Profit Drinking
> > *
> > *:: 904.962.2887*
> > *:: waffqle@...*
> > *:: NO FAXES*
> >
> > *
> >
> > *
> >
> >
> > [Non-text portions of this message have been removed]
> >
>
>
>
*Waffqle Driggers*
*High End Dev, System Design, Profit Drinking
*
*:: 904.962.2887*
*:: waffqle@...*
*:: NO FAXES*
*
*
[Non-text portions of this message have been removed]