Amazon CTO on Security
Credit card information should be kept in a physical secure location separate from your other servers with armed guards in front of it (I am not kidding)...
I won't tell you exactly how we implement our schemes but to get to Amazon customer credit cards you will need a small army of Marines. Although recently we have been discussing to place physical and electronic booby-traps such that the servers will self-destruct when compromised, to deal with such full physically attack ...
Amazon's CTO Werner Vogels in his blog entry You Guard it With Your Life.
It is good to see that Amazon takes security seriously!
- Turn off autocomplete for credit card input - October 7, 2005
- ColdFusion returning empty response with server-error: true
- Careful applying CF11u16, CF2016u8, CF2018u2
- Sessions don't work in Chrome but do in IE
- csrfVerifyToken does not invalidate the token
- The cf_sql_ is optional in cfqueryparam
- Cookie Expires / Max-Age 1969-12-31T23:59:59.000Z
- Burst Throttling on AWS API Gateway Explained
- How to Resolve Java HTTPS Exceptions