访问客户端信息 [英] Accessing client side information

问题描述

在我的应用程序中，我想实现支付门方式

说明:

用户必须输入所需的信息.并点击付款，然后它将重定向到付款网关.再次完成后，它应该重定向到我的页面.

问题:在用户输入付款网关之前，我必须在确认付款后使用该信息(操作只能在客户端进行).

为此您可以提出建议.

我正在使用Coockies(但安全性较低)

谢谢

In my application i want to implement payment gate way

Description:

User has to enter required information. and click on payment, then it should redirect to the payment gateway. Once it has been done again It should redirect to my page.

Problem: Before payment gateway what user entered, that information I have to use after payment confirmation (Operation has to done at client side only).

for this what you can suggest.

I am using Coockies (But it is less Security )

Thanks

推荐答案

您有三种基本方法可以做到这一点:

1)Cookies
2)会话变量
3)数据库.

所有这三个都可以包含加密信息，因此没有理由不能再使用其中两个或三个的组合来进一步提高安全性.

You have three basic ways to do this:

1) Cookies
2) Session variables
3) Database.

All three of these can contain encrypted information, and there is no reason why you can''t use a combination of two or three of these to increase security still further.

Cookie是客户端状态管理，与服务器端状态管理相比，安全性较低.
最好使用SESSION而不是Cookie.
可以在浏览器设置中禁用cookie.
针对您的Web应用程序的快速，可扩展和安全的会话状态管理 [

Cookies are client side statemanagment and less secure compared to server side state managment.
Better to go with SESSION veariable rather than cookies.
cookies can be disabled in browser settings.
Fast, Scalable, and Secure Session State Management for Your Web Applications[^]

如果担心安全性(如您应有的那样)，则应确保使用HTTPS并设置安全标志，以确保cookie会被加密.

我建议您阅读此 [

If you are worried about security (as you rightly should be), you should ensure that you use HTTPS and set the secured flag which ensures that your cookie will be encrypted.

I would suggest that you read this[^] paper to get a better understanding of cookie security.

Beyond that, I would go with Griff''s suggestion of using a combination of Session, Cookie and Database to store the information in a secured fashion. If you use the database, make sure that you are storing sensitive information using encryption.

这篇关于访问客户端信息的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！