Encryption
Posted: Sun May 04, 2014 3:04 pm
In the light of the 'NSA scandal' how easy would it be for you to add (optional) encryption of sensitive data (client data and documents)? I read that your server is located in London - i.e. a country where , among other laws, anti terror legislation makes it easy for authorities to seize any server or request a copy of it!
As I am not that familiar with php I dont know if readily available crypto modules exist for it.
Edit:
I saw that you store the private key along with the pub cert (for enrypting credit card data) in the database!
One has to choose a really good password for this kind of "protection" else the encryption is useless!
As I am not that familiar with php I dont know if readily available crypto modules exist for it.
Edit:
I saw that you store the private key along with the pub cert (for enrypting credit card data) in the database!
One has to choose a really good password for this kind of "protection" else the encryption is useless!