[PHP] Re: keeping credit card info in session

x27;s questions. I'll be updating my systems to comply. Thanks! -Jim On Apr 10, 2007, at 9:18 AM, itoctopus wrote: Encryption is a mandatory part of PCI compliance... -- itoctopus - http://www.itoctopus.com "Jim King" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PRO

[PHP] Re: keeping credit card info in session

Does encrypting credit card information really do any good? You have to store the keys somewhere to decrypt the data to use it. As we have seen with blu-ray and HD DVD movies, the keys are the weak point that are easily compromised. Besides, even encrypted data can be decrypted by bru