|
John Kudos
|
September 27, 2012 at 9:22 am
I’ve been taking a lot of orders using Authorize.net AIM method. Just recently someone inquired if the site is secured because the credit card / info page is unencrypted. So: Is it secure purchasing from my site, or do I need an SSL certificate?
|
|
Sidney Harrell
|
September 27, 2012 at 10:43 am
Aim doesn’t require it, we’ve tested aim lots of times on test servers that don’t have an ssl cert. However, from a security perspective, the page that actually needs to be secure is the Thank You page that you land on when you submit the payment form. Because that is where the CC number is submitted to in the POST data that requests that page. From a customer feel-good perspective, you might also want to secure the payment page with the form where they put in their CC info. For security, it actually makes no difference on that page, but the customers will probably feel more secure.
|
|
John Kudos
|
September 27, 2012 at 1:32 pm
Great, thanks. We’re going to add an Authorize.net seal on the check-out pages to give our customers that sense of security instead.
|
|
Seth Shoultes
|
September 27, 2012 at 1:52 pm
In order to display that seal, the page out is displayed on well need to be in SSL.
|
