WordPress.org

Ready to get started?Download WordPress

Forums

Gravitate Encryption
Is the data encrypted between the browser and the database? (2 posts)

  1. octobermarketingco
    Member
    Posted 1 month ago #

    I'm looking at using Gravitate for a client, however we are wondering if the form data is encrypted before it leaves the browser, or if the encryption only happens server-side, after leaving the browser?

    From what I've read, I'm guessing that the form data is submitted and travels to the server in plain text, where it is encrypted by PHP and stored in the database. Then, when it needs to be displayed in the WP Admin area, it's pulled from the DB, decrypted by PHP and sent in plain text to the browser.

    If I'm correct, I wonder if there is any way some additional encryption (even if it's weak) could be added so that the data never travels in plain text?

    Yes, we use SSL, however we are looking for some additional protection. In addition, we've considered using the plugin on pages that are not SSL protected, because nothing else on the page is sensitive except the form data, but in those cases, we would definitely need the data encrypted while it travels across the network.

    Looking forward to hearing from you. Thanks.

    https://wordpress.org/plugins/gravitate-encryption/

  2. Gravitate
    Member
    Plugin Author

    Posted 1 month ago #

    The Plugin is just Server side Encryption. For Browser encryption you use a SSL. Just like you mentioned.

    If your wanting further encryption then you would need someone to create some Javascript code to convert the values before the form is posted to the server. Then Decrypt the values on the server.

    You would be looking at highering a Developer for custom coding.

    Keep in mind that is what SSL's are for and there are different types, but it is up to you if you want to expand your security.

    Let me know if you have any further questions.

Reply

You must log in to post.

About this Plugin

About this Topic