User's Guide
Table Of Contents
- Payflow Fraud Protection Services User’s Guide
- Preface
- Overview
- How Fraud Protection Services Protect You
- Configuring the Fraud Protection Services Filters
- Assessing Transactions that Triggered Filters
- Activating and Configuring the Buyer Authentication Service
- Performing Buyer Authentication Transactions Using the SDK
- Testing the Buyer Authentication Service
- Buyer Authentication Transaction Overview
- Buyer Authentication Terminology
- Buyer Authentication Server URLs
- Detailed Buyer Authentication Transaction Flow
- Call 1: Verify that the cardholder is enrolled in the 3-D Secure program
- Call 2: POST the authentication request to and redirect the customer’s browser to the ACS URL
- Call 3: Validate the PARES authentication data returned by the ACS server
- Call 4: Submit the intended transaction request to the Payflow server
- Example Buyer Authentication Transactions
- Buyer Authentication Transaction Parameters and Return Values
- ECI Values
- Logging Transaction Information
- Screening Transactions Using the Payflow SDK
- Downloading the Payflow SDK (Including APIs and API Documentation)
- Transaction Data Required by Filters
- Transaction Parameters Unique to the Filters
- Existing Payflow Parameters Used by the Filters
- Response Strings for Transactions that Trigger Filters
- Accepting or Rejecting Transactions That Trigger Filters
- Logging Transaction Information
- Responses to Credit Card Transaction Requests
- Fraud Filter Reference
- Testing the Transaction Security Filters
- Good and Bad Lists
- AVS Failure Filter
- BIN Risk List Match Filter
- Country Risk List Match Filter
- Email Service Provider Risk List Match Filter
- Geo-location Failure Filter
- International IP Address Filter
- International Shipping/Billing Address Filter
- IP Address Match Filter
- Shipping/Billing Mismatch Filter
- Total Item Ceiling Filter
- Total Purchase Price Ceiling Filter
- Total Purchase Price Floor Filter
- USPS Address Validation Failure Filter
- ZIP Risk List Match Filter
- Deactivating Fraud Protection Services
- Index
Fraud Protection Services User’s Guide 9
Preface
This document describes Fraud Protection Services and explains how you can use the Payflow
SDK to perform transactions that will be screened by Fraud Protection Services filters.
For details on how to configure and use Fraud Protection Services and to generate Buyer
Authentication reports through PayPal Manager, see PayPal Manager online help.
Intended Audience
This document is intended for Payflow merchants who subscribe to any Fraud Protection
Services options.
Document Conventions
This document uses the term fraudster to represent an entity (typically a person) attempting
fraudulent activity.
Document Organization
Chapter 1, “Overview,” presents the Fraud Protection Services suite.
Chapter 2, “How Fraud Protection Services Protect You,” describes the security tools that
make up the Fraud Protection Services.
Chapter 3, “Configuring the Fraud Protection Services Filters,” describes how to configure
Fraud Protection Services.
Chapter 4, “Assessing Transactions that Triggered Filters,” makes recommendations on
how to set up and fine-tune filters.
Chapter 5, “Activating and Configuring the Buyer Authentication Service,” describes
activating and configuring the Buyer Authentication service.
Chapter 6, “Performing Buyer Authentication Transactions Using the SDK,” describes and
provides an example of how to use Buyer Authentication.
Chapter 7, “Screening Transactions Using the Payflow SDK,”describes how to screen
transactions for fraud using the Payflow SDK.
Chapter 8, “Responses to Credit Card Transaction Requests,” describes the responses to a
credit card transaction request.