跨页面存储信用卡信息的安全方式 ASP.NET MVC [英] Safe way to Store Credit Card Info Across Pages ASP.NET MVC

问题描述

我正在运行 ASP.NET MVC，需要一种安全的方式来临时存储信用卡数据(我有一个订单确认页面，该页面发布到实际处理订单的操作).我尝试了 TempData，但它在帖子中无法生存.会话存储在服务器上，我可以安全地使用它吗?

I'm running ASP.NET MVC and need a safe way to store credit-card data temporarily (I have a order confirmation page, which posts to an action that actually processes the order). I tried TempData, but it doesn't survive the post. Can I safely use session since it's stored on the server?

谢谢.

推荐答案

在流程的最后一步之前，您甚至不应该请求数字.此外，您也应该在整个过程中使用 SSL.如果您决定将它们存储在 Session 中，请对它们进行加密以增加安全性.

You really shouldn't even be requesting the numbers until the last step in the process. Additionally, you should be using SSL for the entire span of the process too. If you decide to store them in Session, encrypt them just for an added degree of safety.

这篇关于跨页面存储信用卡信息的安全方式 ASP.NET MVC的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！