note
goibhniu
<p>
I'm going to join others that have not directly answered your "how to get sensistive data to the client" question and add another general resource. For that I apologize, but hope this helps.
</p>
<p>
[href://http://www.owasp.org|OWASP] is an organization with general info on writing secure web applications. It's fairly java-centric, but all the principles apply well enough. In particular, look at their [href://http://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project|Top Ten] list of web application security flaws. Remember that the whole application has to be secure, not just the part that has to do with sensitive data.
</p>
<div class="pmsig"><div class="pmsig-632330">
<hr />
<font size='1'>
#my sig used to say 'I humbly seek wisdom. '. Now it says:<br />
use strict;<br />
use warnings;<br />
I humbly seek wisdom.
</font>
</div></div>
780880
780880