I have been working on getting data transfer encrypted for parts of my website, and I think I have a solution! Rather than encrypt all of the site with an expensive SSL certificate, I am just going to encrypt the AJAX calls.
Here are the resources that I am using:
- On the Javascript side — pidCrypt
- On the PHP side — Stevish’s PHP Encryption
- jQuery plugin for pidCrypt
Do you have any experience with this or anything similar? Comments are welcome!
Update: I am still trying to get it working… Check out my question here.
Update: Here’s a nice link to help with generating the key: madboa.com: OpenSSL Command-Line HOWTO — How do I generate an RSA key?
Update: I haven’t been able to get pidCrypt to work. I found another tool that looks very good called jCryption, but I can’t make it work because my host doesn’t provide the bcMath library. I found a couple more helpful pages here and here.
I use this functionality and have written a simple method of implementing g it