gosilent — 2011-09-27T14:33:29-04:00 — #1
I need to build a form collecting sensitive information that needs to be transferred securely. The site owner has purchased an SSL Certificate and there are form mailer scripts using php available for use.
The question is: I don't think sending info through email via a script is really secure. My understanding is that the form data is secured during the user session on the site - but then what?
How do I get the data from the form on the website to the website owner in a secure fashion?
I have built many forms, but this is a first foray into security of data other than a shopping cart where the data was handled by cc processing through the processing/cc validation through the bank and the shopping cart software.
Can someone walk me through this or offer pointers? The hosting company and a Google search is not helping me much. Maybe I am asking the wrong question.
Thanks for any help!
logic_earth — 2011-09-27T14:49:37-04:00 — #2
user submits form > data sent encrypted to the server > data stored on the server encrypted > owner accesses site's control panel > data from the user is displayed in the control panel while using an SSL connection.
michael_morris1 — 2011-09-27T15:24:36-04:00 — #3
You'll have to make a login for them and some sort of viewer. You could email them a notification that new data had been collected without compromising security - though your intuition is right - email is not a secure data transfer method.
cranial_bore — 2011-09-27T17:13:42-04:00 — #4
SSL prevents the data from being intercepted between the browser and the server, but does nothing to improve security in other areas.
So you're right you can't just email it. (I don't know much about encrypted email—it does exist though).
You also have to consider the whole security of your server. For example if you login to cPanel over non-SSL on a shared network and someone intercepted that password, they could also access your server and find the data that way.
This is why most websites don't store credit card details on their server. Even if it's transferred by SSL it could still be stolen by other means.
gosilent — 2011-09-29T13:03:26-04:00 — #5
Thank you everyone for your help!
I have been doing further research and it seems that most solutions involve a hosted solution with all the security and cPanel in place. It actually is rather difficult to find straight forward info on this topic and most of the hosted solution sites are not even bothering to respond to email or phone inquiry.
Apparently there are "appliances" both virtual and hardware (very expensive) that can also serve the purpose. I believe I need a security specialist for this task because of the requirements to meet HIPAA. I am a designer and I know when I am not qualified. I'm not qualified.
Thanks again everyone!