3DS Authentication Result Codes
Table A-2 contains a list of valid authentication result codes returned by Visa for the Verified by Visa service or Mastercard for the Mastercard SecureCode service. It specifies which authentication result values apply to which order sources.
The Discover ProtectBuy service only returns one of the following Authentication Result Codes: 0, 1, or 2.
TABLE A-2 Authentication Result Codes
Authentication Result Code |
Description |
---|---|
Order Source - Ecommerce |
|
Blank |
CAVV not present or CAVV not verified. Issuer has not selected CAVV verification option. |
Order Source - any |
|
B |
CAVV passed verification, but no liability shift because a) ECI was not 5 or 6 or b) the card type is an excluded (e.g., Commercial Card) |
Order Source - 3DSAuthenticated or 3DSAttempted |
|
0 |
CAVV could not be verified or CAVV data was not provided when expected or (for Mastercard) Downgrade to non-3DS transaction, Missing or base64 encoded AAV does not start with j (AAV is invalid for 3dsAuthenticated transaction) |
6 |
CAVV not verified, because Issuer not participating. VisaNet processes as if CAVV is valid. |
Order Source - 3DSAuthenticated |
|
1 |
CAVV failed verification or (for Visa) TAVV (token authentication verification value) cryptogram failed validation or (for Mastercard) Downgrade to 3DS Attempted transaction, AAV starts with h and not j |
2 |
CAVV passed verification or (for Visa) TAVV cryptogram passed validation |
D |
Issuer elected to return CAVV verification results and Field 44.13 blank. Value is set by VisaNet; means CAVV Results are valid. |
Order Source - 3DSAttempted |
|
3 |
CAVV passed verification or (for Visa) DTVV (dynamic token verification value) or Visa-defined format cryptogram failed validation |
4 |
CAVV failed verification - attempted authentication or (for Visa) DTVV or Visa-defined format cryptogram passed validation |
5 |
Not used |
7 |
CAVV failed verification |
8 |
CAVV passed verification |
9 |
CAVV failed verification; Visa generated CAVV because Issuer ACS was not available. |
A |
CAVV passed verification; Visa generated CAVV because Issuer Access Control Server (ACS) was not available. |
B |
CAVV passed verification but no liability shift because a) ECI was not 5 or 6 or b) the card type is an excluded (e.g., Commercial Card) |
C |
Issuer elected to return CAVV verification results and Field 44.13 blank. Value is set by VisaNet; means CAVV Results are valid |