newbe: need Information

[Srinidhi]

Hi All
I am new to Security programming. I am on a project which includes online purchasing. Can anyone give me some information about how implement security for credit card validation?
Any help is hugely appreciated.
srini.

Srinidhi Rao

[RepoBounty]

Check Into PayPal.com

[Hobbit K]

There are MANY companies that specialize in doing online credit card acceptance, for a very nominal fee. Typically, it is just thru a link on your site that connects to their secure server(s). I have used several and have never had a problem or complaint.
Personally, I would not use pay-pal again, but that is only my opinion.
If you want to do it yourself, on your own server, you need to remember that each bank, or their parent company, has its own protocol. I find it alot more cost efficient, to simply pass the costs of monthly service and the per-transaction fee on to my client. They can decide whether to add that charge onto their customers or not. Search the NET and you will find the company that offers something that fits what you need.

[Twodogs]

My understanding is that you need a 'merchant' account with a bank to be able to process credit card payments - and when you sign up for the merchant account, you get the software (or hooks to their software) to validate the CC payment.

If that is NOT what you are doing, and for some reason, you have 'off line' reconciliation of CC's, then you need to contact the CC companies themselves and get them to give you the validation algorithm(s).

There is also some commercially available software (I used it a couple of years ago) for offliine validation - its available in the USA, but I can't remember what it was called.