Visa CAVV Results Code
Visa and MasterCard
CAVV Results Code for Visa; UCAF Downgrade Reason Indicator for MasterCard
When cryptogram type of CAVV - Cardholder Authentication Verification Value is present in TabaPay's Unified API, the CAVV Results Code returned in the response indicates whether the downstream issuing systems were able to successfully verify this cryptogram value.
When is CAVV Cryptogram Present
During Create Transaction API, CAVV Cryptograms are forwarded to Card Networks in the Authorization message.
- CAVV is present for 3DS-enabled transactions as well as with Apple Pay and Google Pay token payloads.
When the instruction to authorize reaches the issuer, the issuing systems will verify the CAVV Value to ensure that the issuer authenticated the cardholder for the transaction and that its contents have not been altered.
When available from the card networks in the Authorization Response, TabaPay will relay the CAVV Results Code in our API response.
CAVV Results Code is a vital input to your Risk Decision
The CAVV Results Code enhances your risk management transaction data. TabaPay encourages our clients to develop a risk strategy that utilizes a layered risk management approach.
CAVV Results Code is suggested to be used in combination with other risk-related data such as verifying addresses, geolocation data, device data, and historical transaction data.
Benefits and How to Use CAVV Results Code
Upon receiving a CAVV Results Code, TabaPay Clients can utilize the table below to understand whether the transaction is protected or not.
The results not only indicate the performance of the current transaction in question, but will help merchants fine tune their risk decisioning upstream for future transactions.
CAVV Results Code | Description | What does this mean |
|---|---|---|
Blank | CAVV not present in authorization message OR CAVV not verified, issuer has not selected CAVV verification option | No liability shift; merchant not protected from chargebacks |
0 | CAVV could not be verified OR CAVV data was not provided when expected | No liability shift; merchant not protected from chargebacks |
1 | CAVV failed verification – cardholder authentication | (Usually an indication of potential bad or fraudulent CAVV data in the authorization message; CAVV was created by the Issuer’s ACS) Liability for this transaction should remain with the Issuer for fraud chargebacks. |
2 | CAVV passed verification – | Fully authenticated transaction. Liability shift applied and the merchant is protected from applicable chargebacks. |
3 | CAVV passed verification – | Attempted authentication; Liability shift applied, and merchant is protected from applicable chargebacks. |
4 | CAVV failed verification – | Attempted authentication; Liability shift applied, and merchant is protected from applicable chargebacks. |
5 | Reserved | Not used/not applicable |
6 | CAVV not verified, issuer not | Attempted authentication; Liability shift applied, and merchant is protected from applicable chargebacks. |
7 | CAVV failed verification – | Attempted authentication; Liability shift applied, and merchant is protected from applicable chargebacks. |
8 | CAVV passed verification – | Attempted authentication; Liability shift applied, and merchant is protected from applicable chargebacks. |
9 | CAVV failed verification – | Attempted authentication; Liability shift applied, and merchant is protected from applicable chargebacks. |
A | CAVV passed verification – | Attempted authentication; Liability shift applied, and merchant is protected from applicable chargebacks. |
B | CAVV passed verification – no | No liability shift; merchant not protected from fraud chargebacks. |
C | CAVV was not verified (Attempted | Liability shift applied, and merchant is protected from applicable chargebacks. |
D | CAVV was not verified (Cardholder | Liability shift applied, and merchant is protected from applicable chargebacks. |
Scenarios when CAVV Verification Fails
CAVV verification can fail for one of the following reasons
Scenario | Details |
|---|---|
Transaction May Be Fraudulent | A fraud perpetrator may be trying to submit an authorization transaction with a “made up” CAVV in an attempt to obtain an authorization. Due to the potential for fraud, issuers are most likely to decline the transaction when CAVV verification fails. This results data, therefore, enhances our client's risk decisioning process. |
Processing Error (Rare) | When CAVV data is corrupted |
Issuer system issues | Unexpected issues at the issuer that prevents them from reading the CAVV cryptogram |
Updated 21 days ago