Originally Posted by slob54
Ok.. Then could you please tell me some reliable means to secure the user side?
You will need a combination
Install an SSL
Check and limit use of weak passwords
Have security Question added to your system during password recovery.
You may also (If really necessary) demand a password change after X months.
Unless its necessary you may also not store CC
The list is definitely endless just determine what is best suited for you.