Can anybody suggest me a good book on encryption techniques in credit card transaction processing etc.
Be forewarned, encryption is like other APIs. It's not as simple as reading APIs and callng the right methods. Security is a design philosophy. Coding is only one part of it. Of the coding part, encryption is only one of many techniques which must be combined correctly to make something secure. Much like building a dam, it's not as simple as putting up a wall, but rather understanding the environment and application forces, and designing with a certain goal. And like a dam, one single flaw, and you're all washed up. That being said, to understand security, Bruce Schneier's book Applied Cryptography is the bible of cryptography. His more recent book, Secrets and Lies talks more about security philosophy. Once you feel comfortable with the ideas, there are a couple books on the JCE. I've read one, and skimmed some others, they're mostly the same. None really teaches you how to use it correctly, from an implementation standpoint; they all teach the mechanics of the APIs. --Mark email@example.com
I was in the same boat and purchased Jamie Jaworski's "Java Security Handbook" and found it to be very useful. ISBN 0-672-31602-1 However, Mark's reply is just as valid - it's a design philosophy. Suck it and see ! Regards
What's that smell? I think this tiny ad may have stepped in something.