December 5, 2009 at 1:22 pm
This is the problem I'm facing:
The database (SQL Server 2005) holds more than 5 million customer records. These records contain sensitive credit-card information that must be encrypted. Implementing an application-side encryption solution involves VB6 and .Net technologies. How to achieve a server-side encryption solution that would have minimal impact on performance and business processes?
Applying Encryption to Database
Finding and Decrypting a Record
I would like to know your opinion and advice.
Thanks in advance.
December 5, 2009 at 7:12 pm
Encrypt only the credit card column, or better yet, encrypt it as a hash only. Don't store this stuff if you don't need to do it. If you do, then you ought to comply with PCI requirements of the credit card companies, not come up with something yourself.
Viewing 2 posts - 1 through 1 (of 1 total)
You must be logged in to reply to this topic. Login to reply