http://qs1969.pair.com?node_id=602058


in reply to Customer data encryption

I'm not an encryption expert, but thought I'd throw this out there. If the customer does not need have the data in encrypted form on their end, why not use a secure web server and have them upload it to you via SSL? You can set up a secure upload page with a form for uploading the file and their comments. A simple cgi script could notify you via e-mail when a new file was uploaded.

Replies are listed 'Best First'.
Re^2: Customer data encryption
by ikegami (Patriarch) on Feb 26, 2007 at 03:27 UTC
    Having the file encrypted on the hard drive, not just while in transit is not a bad idea. It provides defense in depth, in case the web server (or some other service) fails to restrict access to the uploaded files.