SitePoint Sponsor

User Tag List

Results 1 to 6 of 6
  1. #1
    SitePoint Guru
    Join Date
    Nov 2004
    Location
    calif
    Posts
    743
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Collecting sensitive info via upload?

    I'd like to create a Form where a web visitor can enter personal information
    and that I can get it and process it securely. After reading about Secure Mail Forms, I'm wondering if it would be more secure to create an Upload Form, rather than emailing the information. I look forward to replies/opinions. Thanks.

  2. #2
    SitePoint Addict
    Join Date
    Jul 2007
    Location
    San Jose, California
    Posts
    355
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    https

  3. #3
    SitePoint Guru
    Join Date
    Nov 2004
    Location
    calif
    Posts
    743
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Thank you for your lengthy reply
    Yes, an ssl certificate would be in place, that aside,
    would an Upload Form be a bit more secure than a Form,
    who's information is emailed?

  4. #4
    Non-Member
    Join Date
    Oct 2009
    Posts
    1,852
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    What do you mean with "Form, who's information is emailed"?

  5. #5
    SitePoint Guru
    Join Date
    Nov 2004
    Location
    calif
    Posts
    743
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    I meant an using Upload Form would be a bit more secure than using a Mail Form, correct? Because with a Mail Form the information is emailed, correct?

  6. #6
    SitePoint Wizard cranial-bore's Avatar
    Join Date
    Jan 2002
    Location
    Australia
    Posts
    2,634
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    SSL encrypts the transaction between the user's web browser and the web server. It cannot be intercepted on the way.
    Once it's on the server you can again to insecure things with the data. So yes, having your PHP script email the data to an admin would be insecure because email is not generally sent over a secure connection.
    I think it is possible to send/receive encrypted mail (I'm not that familiar, Google will know more about it), but a better approach is probably to email a notification of new data, and have the admin login to the site and view the information online over SSL.

    It's worth keeping in mind that SSL only protects the data in transit. Once it is sitting on your server it could be accessed if your site were compromised in another way.

    This is why eCommerce sites (even with SSL) generally don't store credit card information.

    You might be able to store the data a little more securely by exporting it to some file you can download over SSL then moving it to a computer other than your web server. Then if your site is targeted most of the data won't be stored there. Might be overkill though.


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •