User's Guide
Table Of Contents
- Payflow Fraud Protection Services User’s Guide
- Preface
- Overview
- How Fraud Protection Services Protect You
- Configuring the Fraud Protection Services Filters
- Assessing Transactions that Triggered Filters
- Activating and Configuring the Buyer Authentication Service
- Performing Buyer Authentication Transactions Using the SDK
- Testing the Buyer Authentication Service
- Buyer Authentication Transaction Overview
- Buyer Authentication Terminology
- Buyer Authentication Server URLs
- Detailed Buyer Authentication Transaction Flow
- Call 1: Verify that the cardholder is enrolled in the 3-D Secure program
- Call 2: POST the authentication request to and redirect the customer’s browser to the ACS URL
- Call 3: Validate the PARES authentication data returned by the ACS server
- Call 4: Submit the intended transaction request to the Payflow server
- Example Buyer Authentication Transactions
- Buyer Authentication Transaction Parameters and Return Values
- ECI Values
- Logging Transaction Information
- Screening Transactions Using the Payflow SDK
- Downloading the Payflow SDK (Including APIs and API Documentation)
- Transaction Data Required by Filters
- Transaction Parameters Unique to the Filters
- Existing Payflow Parameters Used by the Filters
- Response Strings for Transactions that Trigger Filters
- Accepting or Rejecting Transactions That Trigger Filters
- Logging Transaction Information
- Responses to Credit Card Transaction Requests
- Fraud Filter Reference
- Testing the Transaction Security Filters
- Good and Bad Lists
- AVS Failure Filter
- BIN Risk List Match Filter
- Country Risk List Match Filter
- Email Service Provider Risk List Match Filter
- Geo-location Failure Filter
- International IP Address Filter
- International Shipping/Billing Address Filter
- IP Address Match Filter
- Shipping/Billing Mismatch Filter
- Total Item Ceiling Filter
- Total Purchase Price Ceiling Filter
- Total Purchase Price Floor Filter
- USPS Address Validation Failure Filter
- ZIP Risk List Match Filter
- Deactivating Fraud Protection Services
- Index
Fraud Filter Reference
About the Fraud Risk Lists
A
76 Fraud Protection Services User’s Guide
“USPS Address Validation Failure Filter” on page 85
“IP Address Velocity Filter” on page 87
Filters Included with the Advanced Fraud Protection Services Option
All Basic filters plus:
“Special Case: Buyer Authentication Failure Filter” on page 76
“USPS Address Validation Failure Filter” on page 85
“Email Service Provider Risk List Match Filter” on page 86
“IP Address Match Filter” on page 85
“Account Number Velocity Filter” on page 84
“Geo-location Failure Filter” on page 86
“Bad Lists” on page 88
“International Shipping/Billing Address Filter” on page 89
“International AVS Filter” on page 90
“International IP Address Filter” on page 89
“Country Risk List Match Filter” on page 89
“Good Lists” on page 91
“Total Purchase Price Floor Filter” on page 91
“Custom Filters” on page 91
“Product Watch List Filter” on page 79
Special Case: Buyer Authentication Failure Filter
The Buyer Authentication Failure filter, which screens the customer authentication data
returned by the service, is described on page 82.
About the Fraud Risk Lists
Filters whose name includes “Risk List” make use of lists that the Fraud Protections Services
manage. Extensive statistical analysis of millions of e-commerce transactions is performed to
determine transaction data elements (for example BIN numbers or ZIP codes) that are
statistically more likely than average to be correlated with fraudulent transactions.
Inclusion in a Risk List is not an absolute indication of fraud, only a statistical correlation that
indicates that you should evaluate the transaction more closely (and in conjunction with other
filter results for the transaction).