Security considerations when collecting and storing bank account details in a php/mysql application

About

Asked 9/8, 2011 at 13:57 Answered 9/8, 2011 at 15:7

We have been asked to look into the feasibility of an application to collect bank account numbers and sort codes and store them temporarily for offline processing through a paperless direct debit system.

Data will be collected from website visitors through a 256 bit SSL connection and stored in a mySQL database for later collection by our client. This data would be held temporarily until downloaded at which point it would be erased from the database.

Details: We host a few other websites on this particular server No-one has shell access or FTP access to the server Server is PCI compliant Mod_security and other software running on machine

I know this is very similar to this question Best practices for storing bank information in a database, and appreciate the bulk of responses are to steer clear.

I understand the list of security considerations is potentially very large.

What particular areas of security should we focus on?

Inartificial answered 9/8, 2011 at 13:57 Comment(2)

Why would users download data they themselves shared with you earlier (bank accounts)? I am assuming it's the users who download their own data, of course. I don't want to think someone else does :) – Pinhead 9/8, 2011 at 14:3

Hello amn, data would be downloaded by our client who would use the bank details to set-up direct debits to take money from the accounts. We are not involved in this process, all we need to do is provide a method of our client accessing this information once website visitors have provided it. – Inartificial 9/8, 2011 at 14:43

Use asymmetric encryption so that the data is encrypted before being inserted into the database, but you don't store the necessary key to decrypt the data on the server.

This key should only be stored on the client's side, so they can decrypt it after retrieving it from your server.

Still with this protection, you'll want to create a tunnel of sorts for them to securely connect to your server(s). If you intend to let them connect to MySQL directly, I should mention it is inadvisable to accept external connections to the MySQL listening port indiscriminately. If they have a static IP, you can make use of a software or hardware firewall to restrict it in that manner, if creating a VPN is not workable for you.

This answer provides some information about doing asymmetric encryption with the built-in openssl_* functions in PHP.

Please ask for clarification/expansion on any of this as necessary.

Backrest answered 9/8, 2011 at 15:7 Comment(2)

Hello MH, asymmetric encryption sounds like the way to go. We already block all external connections to our MySQL server bar two static IP addresses. I'm quite confident encrypting the data before insertion to the database. Do you have any advice on a method for the client to collect and decrypt this data? They initially requested a CSV file. – Inartificial 9/8, 2011 at 18:40

By Client you mean to decrypt the data at Android, iOS, etc side and store the decryption key in Android, iOS,etc app? – Lombroso 30/11, 2021 at 20:1

Hot tags

Godot Unity Godot Help Programming Godot 4.X GUI GDScript 3D 2D Physics CSharp Godot 3.X VR XR Projects C++

Recommended topics

Hot tags