Security Basics mailing list archives

Re: best practice in e-commerce applications

From: "Tim Sills" <trsills () hotmail com>
Date: Wed, 23 Apr 2003 22:48:00 +0000

Jamey,

In terms of credit card practices you should start with Visa's CardholderInformation Security Program (CISP).


http://www.usa.visa.com/business/merchants/cisp_index.html?it=h2_/index.html

Also, Mastercard is trying to roll something out but I haven't received muchinfo on this yet.


Tim R. Sills
Enterprise Ops Security Analyst
MCSE, CCDA, GIAC, TICSA, CISSP
conneXion by Boeing SM

From: "Jamey Maze" <jamey () hush com>
To: security-basics () securityfocus com
Subject: best practice in e-commerce applications
Date: Tue, 22 Apr 2003 11:21:09 -0700

Looking for documentation on best practices in designing e-commerceapplications,

 including data encryption and system/network architecture. Specifically,
 what are the measures that people generally employ to protect credit
card and other personal information? Am looking to avoide reinventing
the wheel here.

Thanks!
Jamey

---------------------------------------------------------------------------
Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam, the
world's premier event for IT and network security experts.  The two-day
Training features 6 hand-on courses on May 12-13 taught by professionals.
The two-day Briefings on May 14-15 features 24 top speakers with no vendor
sales pitches.  Deadline for the best rates is April 25.  Register today to
ensure your place.  http://www.securityfocus.com/BlackHat-security-basics
----------------------------------------------------------------------------



_________________________________________________________________

Protect your PC - get McAfee.com VirusScan Onlinehttp://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963



---------------------------------------------------------------------------

Attend Black Hat Briefings & Training Europe, May 12-15 in Amsterdam, theworld's premier event for IT and network security experts. The two-dayTraining features 6 hand-on courses on May 12-13 taught by professionals.The two-day Briefings on May 14-15 features 24 top speakers with no vendorsales pitches. Deadline for the best rates is April 25. Register today toensure your place. http://www.securityfocus.com/BlackHat-security-basics----------------------------------------------------------------------------

Current thread:

best practice in e-commerce applications Jamey Maze (Apr 23)
- <Possible follow-ups>
- Re: best practice in e-commerce applications Tim Sills (Apr 24)