× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. December 2010

RE: credit card number stored issue

Hey Tim,
You may want to consider using a payment gateway that will do recurring
billing and the storing of customer credit cards. You can then program
against an api to submit the user information from a green screen program.
The API will return success/failure. If you want more information on how
to accomplish this just email me offlist at my personal email.
brycekmartin at gmail dot com.

The best part about it is that you don't have to worry about PCI
compliance nearly as much. You really only have to worry about making
sure you're sending your data via SSL and not storing the CC data on disk
(the third party does that).


Thanks
Bryce Martin
Programmer/Analyst I
570-546-4777



"tim" <tim.dclinc@xxxxxxxxx>
Sent by: midrange-l-bounces@xxxxxxxxxxxx
12/08/2010 04:51 PM
Please respond to
Midrange Systems Technical Discussion <midrange-l@xxxxxxxxxxxx>


To
"'Midrange Systems Technical Discussion'" <midrange-l@xxxxxxxxxxxx>
cc

Subject
RE: credit card number stored issue






I will give you a little more background on what I am trying to do.

This is our current process:
1. Get CC info over phone
2. Key CC into green screen and authenticate using Java
App
3. Show user confirmation or declined message
The CC info is not stored on your system.

The new requirement is to set up a recurring payment process. I will need
to
store the CC info in order to do this. I will have a night job that runs
to
process any additional CC transactions.



-----Original Message-----
From: midrange-l-bounces@xxxxxxxxxxxx
[mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of DeLong, Eric
Sent: Wednesday, December 08, 2010 3:02 PM
To: Midrange Systems Technical Discussion
Subject: RE: credit card number stored issue

Just pitching this over the fence, but you might want to google "credit
card tokenization" and consider this approach from the very start...
PCI security can make you miserable if you start down the wrong path.

Tokenization relieves you of many of the most stringent PCI
requirements, but may not be appropriate for your application. Depends
mostly on how you plan to use this credit card data. You didn't say
what sort of application you are dealing with, but in many cases, you
might select a third-party solution, that keeps you completely out of
the credit card storage and transmission game. I have had good results
with CyberSource.com, but there are many providers that might fit your
needs.

Hth,
-Eric DeLong

-----Original Message-----
From: midrange-l-bounces@xxxxxxxxxxxx
[mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of David Gibbs
Sent: Wednesday, December 08, 2010 12:55 PM
To: Midrange Systems Technical Discussion
Subject: Re: credit card number stored issue

tim wrote:
I am interested in the "best" way to store credit card numbers on my
iseries. Im not sure of compliance issues.

There are very specific rules regarding storage & processing of credit
card numbers on a system.

Check out https://www.pcisecuritystandards.org/ for more information.

david


As an Amazon Associate we earn from qualifying purchases.

This thread ...
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.