Tuesday 11 September 2012

Re: [dcphp-dev] HTTPS Hosting

First thing is to figure out the context of the security that may be needed. Questions that come to mind include: what kind of financial data (personal asset info, bank account details, credit cards, transaction details, etc...)? What bad events need to be prevented? How much data or money is at stake? How exposed will the data be? Who will want to abuse the system and how motivated will they be? Are there any security regulations or security policies that apply?

Based on the answers it should be clearer what needs protection and how much. Decisions about hosting etc should flow from that.

And of course, like Oscar mentioned, the easiest will be to have someone else handle sensitive transactions and data if that's possible.

B

On Tue, Sep 11, 2012 at 9:14 AM, Ray Paseur <ray.paseur@gmail.com> wrote:
Colleagues: I will need to handle some online communications about financial data, hence a requirement for all-HTTPS hosting service.  What hosting company would you recommend?  What gotchas should be considered?  All comments welcomed.  Thanks to all, Ray

--
You received this message because you are subscribed to the Google
Group: "Washington, DC PHP Developers Group" - http://www.dcphp.net
To post, send email to washington-dcphp-group@googlegroups.com
To unsubscribe, send email to washington-dcphp-group+unsubscribe@googlegroups.com
For more options, visit this group at http://groups.google.com/group/washington-dcphp-group?hl=en
Posted by at

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)