Key

Format

Condition

Description

threeDSServerTransID

string

M

the 1cs Online Payment System PayID in canonical format as specified in IETF RFC 4122.

acsTransID

string

M

Universally Unique transaction identifier assigned by the ACS to identify a single transaction.

acsRenderingType

object

C

Required unless ACS Decoupled Confirmation = true.

authenticationType

string

C

Required if the Transaction Status = Y or N.

Indicates the type of authentication method the Issuer will use to challenge the cardholder. Required if the Transaction Status = C or D.

Values accepted:

·         01 = static

·         02 = dynamic

·         03 = oob

Future implementation. Protocol Version 2.2.0 onwards –

·         04 = decoupled

authenticationValue

string

C

Required if Transaction Status = Y or A.

challengeCancel

string

C

Indicator informing that the authentication has been canceled.

Values accepted:

·         01 = Cardholder selected “Cancel”

·         02 = Reserved for future EMVCo use (values invalid until defined by EMVCo).

·         03 = Transaction Timed Out—Decoupled Authentication

·         04 = Transaction Timed Out at ACS—other timeouts

·         05 = Transaction Timed Out at ACS—First CReq not received by ACS

·         06 = Transaction Error

·         07 = Unknown

·         08 = Transaction Timed Out at SDK

dsTransID

string

M

Universally unique transaction identifier assigned by the DS to identify a single transaction.

eci

string

C

Payment System-specific value provided by the ACS or DS to indicate the results of the attempt to authenticate the Cardholder. The requirements for the presence of this field are DS specific.

interactionCounter

string

M

Indicates the number of authentication cycles attempted by the Cardholder.

messageCategory

string

M

Identifies the category of the message for a specific use case.

Values accepted:

·         01 = PA

·         02 = NPA

messageExtension

string

C

Data necessary to support requirements not otherwise defined in the 3-D Secure message are carried in a Message Extension. Conditions to be set by each DS.

messageType

string

C

Identifies the type of message that failed in case of an error.

Values accepted:

·         ARes

·         RReq

messageVersion

string

M

Protocol version identifier.

sdkTransID

string

M

Future use. Universally unique transaction identifier assigned by the 3DS SDK to identify a single transaction.

transStatus

string

M

Indicates whether a transaction qualifies as an authenticated transaction.

Values accepted:

·         Y = Authentication Verification Successful.

·         N = Not Authenticated /Account Not Verified; Transaction denied.

·         U = Authentication/ Account Verification Could Not Be Performed; Technical or other problem, as indicated in ARes or RReq.

·         A = Attempts Processing Performed; Not Authenticated/Verified, but a proof of attempted authentication/verification is provided.

·         C = Challenge Required; Additional authentication is required using the CReq/CRes.

·         D = Challenge Required; Decoupled Authentication confirmed.

·         R = Authentication/ Account Verification Rejected; Issuer is rejecting authentication/verification and request that authorisation not be attempted.

·         I = Informational Only; 3DS Requestor challenge preference acknowledged.

transStatusReason

string

C

Provides information on why the Transaction Status field has the specified value. Required if the Transaction Status field = N, U, or R.

Values accepted:

·         01 = Card authentication failed

·         02 = Unknown Device

·         03 = Unsupported Device

·         04 = Exceeds authentication frequency limit

·         05 = Expired card

·         06 = Invalid card number

·         07 = Invalid transaction

·         08 = No Card record

·         09 = Security failure

·         10 = Stolen card

·         11 = Suspected fraud

·         12 = Transaction not permitted to cardholder

·         13 = Cardholder not enrolled in service

·         14 = Transaction timed out at the ACS

·         15 = Low confidence

·         16 = Medium confidence

·         17 = High confidence

·         18 = Very High confidence

·         19 = Exceeds ACS maximum challenges

·         20 = Non-Payment transaction not supported

·         21 = 3RI transaction not supported

·         22 = ACS technical issue

·         23 = Decoupled Authentication required by ACS but not requested by 3DS Requestor

·         24 = 3DS Requestor Decoupled Max Expiry Time exceeded

·         25 = Decoupled Authentication was provided insufficient time to authenticate cardholder. ACS will not make attempt

·         26 = Authentication attempted but not performed by the cardholder

whiteListStatus

string

C

Future use. Only supported with protocol version 2.2.0 onwards. Enables the communication of trusted beneficiary/whitelist status.

Values accepted:

·         Y = 3DS Requestor is whitelisted by cardholder

·         N = 3DS Requestor is not whitelisted by cardholder

·         E = Not eligible as determined by issuer

·         P = Pending confirmation by cardholder

·         R = Cardholder rejected

·         U = Whitelist status unknown, unavailable, or does not apply

whiteListStatusSource

string

C

Future use. Only supported with protocol version 2.2.0 onwards. This data element will be populated by the system setting Whitelist Status.

Values accepted:

·         01 = 3DS Server

·         02 = DS

·         03 = ACS

Merchant Challenge preference indicator, corresponding to “3DS Requestor Challenge Indicator” data element of EMVCo 3D-Secure v2.x specifications.

Allowed values as per EMVCo 3D-Secure latest specifications: 2-digit value, 01-99

• 01 = No preference02 = No challenge requested03 = Challenge requested (3DS Requestor preference)04 = Challenge requested (Mandate) 05 = No challenge requested (transactional risk analysis is already performed)06 = No challengerequested (Data share only)07 = No challenge requested (strong consumer authentication is already performed)08 = No challenge requested (utilise whitelist exemption if no challenge required)09 = Challenge requested (whitelist prompt requested if challenge required)10–79 = Reserved for EMVCo future use (values invalid until defined by EMVCo)80–99 = Reserved for DS use