In Norway (where I come from) they created a system called SET (I think, it's been a while since I looked at that). What this system did, was by using encryption, validated you request, but without the shop getting the details.
How it did this was by using a trusted third party (which isn't that a new concept). This is typically the bank, or the cardcompany. This combined with digital signatures ment that the shop couldn't change the values, and it didn't even know the credittcard number. It just knew that the transaction was ok, since the third party said so.
There is a lot more details of course.
This system seems to have died, since it was too complicated, and the netshops didn't support it. A shame if you ask me, but then, nobody does..:-)
Cookies and wap don't go together afaik. You should make the session-id in a hidden value in the wmlfile. You can do this with postfield. You'll have to make sure your sessions time out and some more.
But it is the way to go.
Also. You've got to look out for & and $. The need to be encoded no matter what. Or the gateway will go berserk (i.e: not respond)
Eidos really needs money. They sold all their stocks in Fast (the www.alltheweb.com thing), for about 300 mill norwegian kroner (about 35-40 million dollar). It's actually worht more, but they won't be able to drop that much into the markedplace without the price crashing.
Slashdot Mirror
In Norway (where I come from) they created a system called SET (I think, it's been a while since I looked at that). What this system did, was by using encryption, validated you request, but without the shop getting the details.
How it did this was by using a trusted third party (which isn't that a new concept). This is typically the bank, or the cardcompany. This combined with digital signatures ment that the shop couldn't change the values, and it didn't even know the credittcard number. It just knew that the transaction was ok, since the third party said so.
There is a lot more details of course.
This system seems to have died, since it was too complicated, and the netshops didn't support it. A shame if you ask me, but then, nobody does..:-)
Cookies and wap don't go together afaik. You should make the session-id in a hidden value in the wmlfile. You can do this with postfield. You'll have to make sure your sessions time out and some more.
But it is the way to go.
Also. You've got to look out for & and $. The need to be encoded no matter what. Or the gateway will go berserk (i.e: not respond)
Eidos really needs money. They sold all their stocks in Fast (the www.alltheweb.com thing), for about 300 mill norwegian kroner (about 35-40 million dollar). It's actually worht more, but they won't be able to drop that much into the markedplace without the price crashing.
So, they need money..
Well, I got pictures of Stallman dancing! I just need Gphoto to transfer them to the computer.
I don't know if they turned out any good,, though.
(I kinda tried to drink Guiness at the same time).
Well, don't complain.. Just go there!
(Says one who came all the way from Norway (as
in Scandinavia, Norway))
Looking forward to the beer!
T