Im using Cold Fusion and SQL 2K for a shopping cart that I built and I would like to be able to encrypt some data thats stored in the database, does anyone have experience with doing this, or some good help links?
Im actually using https right now but I need to store text in the database in some sort of non plain text encryped format, I dunno if Cold Fusion can do it or if it needs to be done by third party software, or if the database itself can do it... I just need a simple way to encrypt data thats stored in my tables to make it just a little more secure..
It is extremely difficult to encrypt data in a database without losing it forever. It's also difficult to provide real security that way! After all, if I can get my hands on the application that's doing the encrypting and decrypting, the data is mine. (Or worse, I can simply "scramble the eggs again," making it unrecoverable garbage as an act of sabotage, and it might be a long time before you'd even know!)
It's best to store the database in a secure location, to armor the pathways to the server via SSL, and to secure all the web pages that access it, by means of SSL. Then build into the database the means of backing-up the data to other tables, of making archival records of past versions of records, and so on.