Hi guys, I am an IT placement student with a company coming to the end of my year. The exciting prospect of being employed by this company has came up for the time between when I finish as a student and beginning my final year at university.
The task that will need to be done is to set up a form using asp that will process direct debit details. I can happily use forms to transfer information between scripts and communicate with servers. I want to know what the procedure is for transmitting this information securely.
It has not been decided yet if the database which contains this information will be kept on an internal server or hosted externally. I have tried googling answers but I have been unable to find anything useful.
What security issues should be taken into account when a user is entering and submitting their bank account details?
Will they need to be encrypted in some way?
Is the best course of action to get in touch with the company that will be processing the direct debits and requesting the use of a dummy server that will be able to receive information I send and respond accordingly?