使用Parse或Stripe保护信用卡信息的安全
[英]Keeping credit card information safe with Parse or Stripe
问题描述
I am working on a app that I need to store credit card information. 
我正在开发一个需要存储信用卡信息的应用程序。 Would it be safe to use the Parse ACL like this? 这样使用解析ACL是否安全?
PFObject *privateNote = [PFObject objectWithClassName:@"_User"];
privateNote[@"creditCard"] = @1234;
privateNote.ACL = [PFACL ACLWithUser:[PFUser currentUser]];
[privateNote saveInBackground];
Or should I use stripe to keep the information . 还是我应该使用条纹来保留信息 。
1 个解决方案
解决方案1
0 已采纳 2016-07-25 09:56:57
Handling raw card information (ie card numbers) yourself would require you to be PCI certified, which is a long and costly process and not a viable option for most entities. 自己处理原始卡信息(即卡号)将要求您获得PCI认证,这是一个漫长而昂贵的过程,对于大多数实体而言,不是一个可行的选择。
Stripe and other modern payment processors make it easy to be PCI compliant by providing means to send the payment information directly from the customer to the payment processor, without the merchant (ie you) having direct access to the PCI-sensitive information. Stripe和其他现代付款处理器通过提供将付款信息直接从客户发送到付款处理器的方式而使兼容PCI变得容易,而商家(即您)则无法直接访问PCI敏感信息。 You should definitely let Stripe (or another payment processor) handle the card information for you. 您绝对应该让Stripe(或其他付款处理器)为您处理卡信息。
(Disclaimer: I work for Stripe.) (免责声明:我为Stripe工作。)
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.