Summary of 3-D Secure version 2 fields

  Last updated: 

 

Field Description
CAVV The unique Cardholder Authentication Verification Value (CAVV) associated with the transaction.
ECI The ECI (E-Commerce Indicator) security level associated with the transaction. The following values can be returned:
  • 00 – 3-D Secure authentication either failed or could not be attempted.
  • 01 – 3-D Secure authentication was attempted but not completed.
  • 02 – 3-D Secure authentication was successful. Transaction is secured by 3-D Secure.
  • 04 – Data only transaction that can be sent to Mastercard.
  • 05 – 3-D Secure authentication was successful. Transaction is secured by 3-D Secure.
  • 06 – 3-D Secure authentication was attempted but not completed.
  • 07 – Returned in two cases:
    • When 3-D Secure authentication either failed or could not be attempted.
    • For successfully-authenticated recurring transactions using Mastercard-branded cards.
Enrolled Indicates whether or not the customer’s card is enrolled in a 3-D Secure scheme. The following values can be returned:
  • Y – The customer’s card is enrolled.
  • N – The customer’s card is not enrolled.
  • U – Unable to determine if card is enrolled.
  • B – Merchant authentication rule is triggered to bypass authentication in this use case.
Status Indicates whether or not the customer was authenticated on the card issuer’s ACS. The following values can be returned:
  • Y – The customer was successfully authenticated.
  • A – Authentication attempted but not completed.
  • U – Authentication couldn’t be performed.
  • C – Challenge required for authentication.
  • N – The customer was not authenticated. The payment will not be processed.
  • R – Authentication was rejected. The payment will not be processed.

Important: We strongly recommend against attempting further payments with cards flagged with status N or R, as the customer failed authentication, indicating an elevated risk of fraud. Instead, we recommend displaying an error message to the customer, stating the payment was not completed, and offer alternative methods of payment.

Version Version of 3-D Secure used to authenticate the payment. (e.g. “2.2.0”).
XID The unique identifier for the transaction, assigned by your MPI (Merchant Plug-In).
Was this article helpful?
1 out of 1 found this helpful