Recent Revisions to This Document

Consolidated references to China UnionPay and UnionPay International to "China UnionPay."

Added a section with examples for Visa Data Only and Mastercard Data Only. See Examples Using 3-D Secure Data Only.

Added a Visa Data Only test case to the Additional Test Cases section. See 5a: Visa Data Only.

Removed references from the Payer Auth Detail Report section to elements from 3-D Secure 1.0. See PayerAuthDetail Element.

Added a list of the 11 browser elements required to ensure a liability shift. See Step 3: Payer Authentication Check Enrollment Service.

The Check Enrollment ECI values tables for the Additional Test Cases were updated. See Additional Test Cases.

Card numbers were added for testing authentication with China UnionPay. See Test Cases for 3-D Secure 2.x.

Fixed spacing error for documentation hub link. See the introduction.

Several dead links were fixed.

Some of the use case examples were reorganized to fix a spacing issue occurring in the HTML version. See Authentication Examples Using Primary Account Numbers.

A 3-D Secure test case for verifying system behavior when a system error prevents authentication. See 2.13: Authentication Is Bypassed.

The EFTPOS card type was added to the 3-D Secure test cases. See Test Cases for 3-D Secure 2.x.

For test case 2.4: Unavailable Frictionless Authentication, the expected AVV value returned in the test was updated to indicate that no value should be returned. See 2.4: Unavailable Frictionless Authentication. For test case 2.5: Rejected Frictionless Authentication,the expected AVV returned in the test was also updated to indicate that no value should be returned. See 2.5: Frictionless Authentication Is Rejected.

Various editorial changes were made throughout the guide. These changes did not include technical updates.

Added a section on transactions that use TMS tokens, Flex Microform tokens, and for tokenized cards. For more information, see Token Use Cases.

Added a section on all types of 3RI transactions. For more information, see Merchant Initiated Transactions.

Updated the use cases to include non-payment authentication (NPA). For more information, see Use Case: Non-Payment Authentication.

Updated the wording describing the ECI raw values for test cases 2.6, 2.7, 2.8, and 2.9 to point out that unlike the other test scenarios in this section, those tests do not return an ECI raw value. See 2.6: Authentication Is Not Available.

Updated the payload code samples to eliminate the use of the

clientReferenceInformation.code

field because it is not a required field and does not need to be in the code example.

Updated card type values for mada

and JCB J/Secure cards

. Verified and updated some test card numbers used in test cases. See Test Cases for 3-D Secure 2.x

The browser value fields listed for the check enrollment service were updated. See Step 3: Payer Authentication Check Enrollment Service.

Added new API field,

consumerAuthenticationInformation. authenticationBrand

that is used with mada transactions to indicate which directory server was used during authentication. This field was added to the optional fields when checking enrollment and validation. For more information, see Optional Fields.

Updated the wording describing the ECI raw values for test cases 2.6, 2.7, 2.8, and 2.9 to note to point out that unlike the other test scenarios in this section, those tests do not return an ECI raw value. See 2.6: Authentication Is Not Available.