I'm researching the best way to store sensative data using php and mysql. Basically I have a typical job applicant form. I'm trying to come up with the best way to keep the big items (ssn and driver license) secure as possible.
I know to use SSL when sending the application to the db.
From there I'm not sure what to do, I can't one way encrypt it because the admin who logs in must be able to read this data.
I've read that encrpyting with a reversable key won't key alot, because most people that can get to the encrypted info can also get to the key to unecrypt it? (though I feel this would stop "script kiddes")
I don't have two machines, one that can take the info and encrypt email it to the other thats not a web server.
Also the clients want to be able to check the system from anywhere, so there is not a good way to authenicate other then user / password that I know of?
Any sharing of wealth here would be much welcome.
