uShop Security
In order to ensure that sensitive payment information gets securely
from the customer to the store owner, uShop implements a two step
process. Step 1 is securely getting the order information from the
customer to a file on the secure server. Step 2 is securely getting the
order file from the secure server to the store owner. The diagram below
illustrates how uShop handles this with the ushop_cgiscript.pl
script and the uShopOrderCGI and uShopOrderReaderCGI applets.
Note: uShop does provide the uShopOrderSMTP applet which does not
require the use of a cgiscript, however, since the uShopOrderSMTP applet
sends the order via regular SMTP email, there is a slight chance that the
order could be snooped if the email destination is to an email address
that is located on some computer other than your secure server.
