Jump to content

Newby Security Question

mattmooney

By mattmooney
in Security Discussions

 Share

Recommended Posts

mattmooney Newbie

mattmooney

Posted
Posted

Hi Everyone,

I just had a friend call and ask for some help. He needs a page that will allow him to add some SS# into a database and then retrieve them later.

If I have a security cert installed on my account, will doing this through https solve his problem?

 

Since I'm new to all of this stuff, I was hoping you folks could help me out. I think I understand that if I connect to https, the information passed between client and server is encrypted. Would that be accurate?

 

Of course, my next question is how safe is it once it's in the mySQL DB? I'm guessing it woudl be best to do a 2-way encryption and store the encrypted info and then decrypt it on the fly when he needs it, still going through https?

 

Does that sound correct?

 

Any help/advice would be really appreciated.

 

matt

TCH-Andy Grand Master

TCH-Andy

Posted
Posted

Hi Matt,

 

Welcome to the family :(

 

Yes, https will encrypt the information between the client and the server.

 

As you suggest, for security you need to encrypt the data into the database really. That way you get encryption during storage and during transmission.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Unfortunately, your content contains terms that we do not allow. Please edit your content to remove the highlighted words below.
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...