Warnings
You must check the import and export laws of your country. Some prevent the use of encrypted data or software with hooks in place for encryption to be added. This module does not contain actual encryption code. It uses the mcrypt module, and provides management services. While it is not subject to export laws in the US, it may well be regulated by your jurisdiction. You are responsible for knowledge of and compliance with local laws.
One must be careful when the encryption/decryption takes place. Network service disruptions and other factors can cause loss of data availability - ie leaving data encrypted with no key available. It is important to process your cards as frequently as you can, and to delete the data as soon as the transaction is cleared.
Introduction:
Requirements for the protection of personal and financial data are being increased day by day. This package was developed to assist you with this requirement during the daily operation of your CRE loaded store. There are 3 main components within this package, ssl for admin, encryption/decryption of data, and pgp signing for email with sensitive data. PGP is not yet implemented. Encryption is functional, but not fully developed in this 0.7 release Encrypt and Decrypt component has 4 main functions within it. Configuration, Manage Keys, Update/Convert, Test.
1. Pre install and installation of Encrypt and Decrypt :
A. Setup and installation: See install_encrypt.txt
B. Enabling SSL for Admin
Although the encryption protects the data while it is stored in the database tables. It does not protect data when you view it in the admin screens. To help with this SSL for admin was written, this should be installed in the admin and the appropriate edit screens run in ssl mode. The files in this package are designed to work with or with out SSL for admin.