On Wed, Nov 3, 2010 at 10:37 PM, L. M. Arun <437341 at gmail.com> wrote: >>>OTOH, while keeping it online in a DB is also a potential exposure, > > Instead of actually storing the SSN in plain-text in the database, store a > Md5 hash. ?! What would be the point of that, if the end user needs to have that actual data to e.g. fill out a tax form? -- Hassan Schroeder ------------------------ hassan.schroeder at gmail.com twitter: @hassan