.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Win Surprise Gifts!!!

Top 5 Contributors of the Month
david stephan
Gaurav Pal
Post New Web Links

Encryption of credit card information

Posted By:      Posted Date: September 19, 2010    Points: 0   Category :Sql Server

I'm working on a project where credit card details will be captured in Database 1, periodically this data will then be transferred to a table in Database 2.
I would like to make use of SQL Server 2005 encryption functionality to control this though am getting buried in certificates / symmetric keys / asymmetric keys.

I understand that first I must go through the process of :
 (a). Set up a database master key in Database 2.
 (b). Set up an asymmetric key in Database 2.
 (c). Supply the public key from the asymmetric key to the 3rd party and the algorithm used to perform the encryption.
 (d). The 3rd party will capture and encrypt the credit card in Database 1 using the public key.
 (e). Periodically we will extract the data from this database and insert the data into a staging table in Database 2.
 (f). Once in Database 2 we will use the asymmetric key to decrypt the credit card.

My questions are :

 (a). Is the process I have outlined above the best solution ?
        - I'm worried about the performance of using asymmetric keys.
        - Should I use a symmetric key encrypted by asymmetric key ?

 (b). How do I give the 3rd party the public key ?

View Complete Post

More Related Resource Links

Credit Card Transaction in C# (e-commerce)


I'm developing for the first time in my life an e-commerce site in Visual C# and ASP.NET 3.5, and i need only help with the "Credit Card transaction" part, i was looking and searching many examples but no one was enough clear.

 I need the theory and some example with that, i found datacash.com and i'm working with that but i'm really confuse. i was reading "Beginning ASP.NET 2.0 E-Commerce in C# 2005" and the man who wrote that book should ask for forgiveness, what a bad book!!!!

 Does any one made a shopping cart with the "CREDIT CARD TRANSACTION" and can give me some advise please??

Thanks a Lot

Credit Card Numbers


I didn't know where else to post this, so if this is the wrong area, I apologize.

I have a client who had us build him an e-commerce site tied into paypal.  Well, he is tired of paypal and wants everything centralized.  He has an in store payment processing system that he uses and now would like to use that for his e-commerce store as well.  So he wants to manually enter the credit card numbers into his payment system in the store.  Only problem is I would rather not store credit card numbers on our server.  Does anyone have a solution so that I can securely get him the credit card numbers without storing them somewhere?  He said as long as he can run it once for the sale he is happy.  Any ideas?



How to get more information about the exceptions that can happen in SharePoint 2010 projects?

In case there is an exception anywhere in the SharePoint 2010 project (most common place an exception would happen is during deployment of your SharePoint project, custom deployment configuration or custom deployment steps), there's a registry key EnableDiagnostics available for you to use.

View State Encryption


Hi All,

Why is it that I see the same hash value generated when I use different algorithms for viewstate encryption. I have added below lines to the web.config file

<pages viewstateEncryptionMode="Always"

Information about sessions


Some questions about sessions:

I know sessions information is stored in the form of cookie and you can use qurystring for that if you set cookieless session in web.config. But I don't exactly understand the scope of a session.

What I believe is when you login to a website, a session cookie is created and the scope of that session is within that page only. If you close the browser that session gets killed and when you open the browser again and go to that site then a new session is created ie a new session is created on every request. Is this correct?

But I have seen in many websites, even if you close the browser and open it again the session is not killed, how does that happen?

Can anyone clear out and explain the scope/lifetime of sessions


ERROR [HY000] [Informix .NET provider][Informix]Database locale information mismatch


Hi, there is an upgrade to my infimacs server and my web application encounter this error after the infimacs is upgraded.

Below is the information on the server before/after the upgrade.

Before            After

---------       -----------  

Solaris 8      Solaris 10

IDS 9.40     IDS 11.50

The web server where the web application hosted is running IBM Informix Connect 2.81. There is no such error before the upgrade is done.

As a developer, i have IBM Informix Client-SDK 2.90 installed on my local pc and debug the page where the read is needed from infimacs but no such error found.

The error come out only when it is hosted on the web server where IBM Informix Connect 2.81 is installed.

I have gone through many articles and it suggest me to set the environement  variable in the server :  DB_LOCALE=en_us.819.

I haven't try this solution but i think that this might not be the best solution.

Is it possible to to to have this settin

How to send an email with information in query string


First I will say I googled (Binged to make Bill happy) for this but could not find anything, perhaps I am not stating what I need correctly;

I have a website that a customer creates orders (for a printing company) and after the order, I would like to email the customer a link to view the status of their order;

I need to send the CustomerID in the link so on the returning page if a CustomerID is detected in the querystring, I "auto login" the client and open the "Dashboard" for the order page for that customer.

Can anyone point me in the right direction as to how to send the link and how to parse the querystring to get the values from the link;

Thank you if you can point me in the right direction.

Want to create Online Business Card designing functionality


 I am going to create Online Business Card designing functionality.

 I am newbie regarding graphics in asp.net. I want to create exactly like following site.




I have some questions


1) How can I write user text in existing image on the fly?

2) How to embed that with aspx page?

3) How to generate it with user inputs like text, font color, size?


Please give me any tutorial URL or any link that could help. Is there any compo

need information about ironpython



 i have installed visual studio 2008.it works fine

now i want to try ironpython. :)

so please give me details of step for installation and which sources require to start ironpython in visual studio 2008.



.NET Visualization: Visualizing Information with .NET


Having the capability to draw pictures usually isn't enough for a good information visualization platform. The key to building a visualization platform is capabilities such as interactivity, generating metadata, and overlaying related data. You need a level of flexibility that lets you render any data in any way at any time.

Laurence Moroney

MSDN Magazine August 2009

Office Development: Manage Metadata with Document Information Panels


Here the author uses Document Information Panels in the Microsoft 2007 Office system to manipulate metadata from Office docs for better discovery and management.

Ashish Ghoda

MSDN Magazine April 2008

Smart Storage: Protect Your Data Via Managed Code And The Windows Vista Smart Card APIs


Smart cards are a compelling alternative to the reliance on passwords, which are the weakest link in authentication systems. Get the Windows smart card programming basics here.

Dan Griffin

MSDN Magazine November 2006

Advanced Basics: Remembering User Information in Visual Basic .NET


Many applications need to store user-specific settings to be persisted between sessions. But how do you go about saving and restoring these settings in your Microsoft® . NET Framework-based application? It's not all that easy to find the correct answer.

Duncan Mackenzie

MSDN Magazine April 2005

Cryptography: Employ Strong Encryption in Your Apps with Our CryptoUtility Component


When storing sensitive data, you need to be able to identify threats, determine how these threats interact with each other, and how issues can combine to constitute a vulnerability that will leave your data exposed. With a good understanding of the various cryptographic algorithms, salt, hashes, ACLs, and other available techniques, you'll be in a better position to protect your critical data.

Michael Stuart and J Sawyer

MSDN Magazine November 2004

Trustworthy Code: Exchange Data More Securely with XML Signatures and Encryption


You can sign any kind of data using XML Signature, including part of an XML document, other XML documents, or other data of any format. However, in practice, XML signatures are most frequently used to sign other data represented in XML. In this article, the authors discuss the new standard and how you can benefit from it in your apps.

Mike Downen and Shawn Farkas

MSDN Magazine November 2004

Data Points: Updating Data in Linked Servers, Information Schema Views, and More


Every day a developer somewhere needs to write code to iterate through SQL ServerT system objects, query and update tables in linked servers, handle optimistic concurrency, and retrieve column and stored procedure metadata.

John Papa

MSDN Magazine November 2004

Encrypt It: Keep Your Data Secure with the New Advanced Encryption Standard


The Advanced Encryption Standard (AES) is a National Institute of Standards and Technology specification for the encryption of electronic data. It is expected to become the accepted means of encrypting digital information, including financial, telecommunications, and government data. This article presents an overview of AES and explains the algorithms it uses. Included is a complete C# implementation and examples of encrypting .NET data. After reading this article you will be able to encrypt data using AES, test AES-based software, and use AES encryption in your systems.

James McCaffrey

MSDN Magazine November 2003

ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend