We do a lot of business where we have to take order information in and then hold the order for months at a time. All of this time, we have credit card information stored on our system. Do you know of any way to encrypt that data within a field in the Order Header file and unencrypt it at a later data? Or is there a better way? After the order is processed, we erase the credit card information.
Encryption is a good solution except that encrypted data most often takes a larger field that what has been defined for the unencrypted data. So to keep this data in the same file you are forced into defining a new field. That may work for you depending on how many logical files you have defined over this file or how many programs you have referencing this file. Another method you could consider would be to move the data that needs to be encrypted into a separate file and keep a reference to the field in the other file in the original field. This method can be less disruptive.
MORE INFORMATION ON THIS TOPIC
The Best Web Links: tips, tutorials and more.
Search400's targeted search engine: Get relevant information on security.
Ask your systems management questions--or help out your peers by answering them--in our live discussion forums.
Check out this Search400.com Featured Topic: Top ten security tips
Dig Deeper on iSeries system and application security
Related Q&A from Carol Woodbury
Before changing password levels and upgrading operating systems on the AS/400, ensure the clients connecting to the NetServer do not need the old ... Continue Reading
Look in the audit journal (QAUDJRN) on the AS/400 for an authority failure message with the name of the library as the object name. Use the ... Continue Reading
The UPPWEI field corresponds to the password expiration interval field, and its values "0" and "-1" represent the *SYSVAL and *NOXMAX commands. Continue Reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.