incrediBILL - 8:34 am on May 1, 2013 (gmt 0)
That's cute and all that but you're better off not store the CC #s in the first place.
Isn't the transaction being processed in real-time?
If so, what do you need the CC # for?
I quit storing them about 10 years ago as my CC processor provides back-end tools that allow me to make adjustments, credits and refunds without needing to have the CC # whatsoever which makes the site completely safe for shoppers.
What you should also know is when hackers get into your site, if you have any code on the server that can decrypt the CCs for admins to look at them, they can also decrypt them. What most hackers do is just drop a line of code in your ecommerce checkout process that sends them the CC #s in real-time as they are being submitted thus bypassing all encryption. Trust me, I used to be a web host and I've seen it all.
The only way not to compromise CC#s is to NOT save them but if you do, they should be downloaded off the server frequently and purged from the server after downloading.