On This Page

Discover/Diners ProtectBuy

ProtectBuy is the authentication service in the Discover/Diner card network that uses the 3-D Secure protocol to authenticate customers at checkout. When you request an authorization using a supported card type and a supported processor, you can include payer authentication data in the request. The payer authentication services enable you to add payer authentication support to your website without running additional software on your server.

While Worldpay VAP normally supports 3-D Secure 2.0 with transactions using Discover (or Diners) payment cards, 3-D Secure is not supported when the Discover transactions involve a network token or use digital payment services such as Apple Pay or Google Pay.

Before implementing payer authentication for ProtectBuy, contact customer support to have your account configured for this feature.

Fields Specific to the Discover/Diner ProtectBuy Use Case

These API fields are required specifically for this use case.

ccAuthService_cavv: Required when payer authentication is successful.

ccAuthService_commerceIndicator: Set this field to one of these values:
dipb
: Successful authentication for a Discover card (3-D Secure value of
05
).
dipb_attempted
: Authentication was attempted for a Discover card (3-D Secure value of
06
).
internet
: Authentication failed or was not attempted for a Discover card (3-D Secure value of
07
).
pb
: Successful authentication for a Diner card (3-D Secure value of
05
).
pb_attempted
: Authentication was attempted for a Diner card (3-D Secure value of
06
).
internet
: Authentication failed or was not attempted for a Diner card (3-D Secure value of
07
).

Endpoint

Set the

ccAuthService_run

field to

true

Send the request to

https://ics2ws.ic3.com/commerce/1.x/transactionProcessor

Related Information

API field reference guide for the Simple Order API

Discover Global Network Fraud and Security Solutions site (discoverglobalnetwork.com/solutions/fraud-security/security-and-authentication)

Required Fields for Processing an Authorization Using Discover ProtectBuy Authentication

Use these required fields to process an authorization using Discover ProtectBuy authentication.

When relaxed requirements for address data and the expiration date are being used, not all fields in this list are required. It is your responsibility to determine whether your account is enabled to use this feature and which fields are required. For details about relaxed requirements, see Relaxed Requirements for Address Data and Expiration Date in Payment Transactions.

billTo_city
billTo_country
billTo_email
billTo_firstName
billTo_lastName
billTo_postalCode
billTo_state
billTo_street1
card_accountNumber
card_expirationMonth
card_expirationYear
ccAuthService_cavv: Required when payer authentication is successful. Otherwise, this field is optional.
ccAuthService_commerceIndicator: Set this field to one of these values:
dipb
: Successful authentication for a Discover card (3-D Secure value of
05
).
dipb_attempted
: Authentication was attempted for a Discover card (3-D Secure value of
06
).
internet
: Authentication failed or was not attempted for a Discover card (3-D Secure value of
07
).
pb
: Successful authentication for a Diner card (3-D Secure value of
05
).
pb_attempted
: Authentication was attempted for a Diner card (3-D Secure value of
06
).
internet
: Authentication failed or was not attempted for a Diner card (3-D Secure value of
07
).
ccAuthService_xid
merchant_referenceCode
purchaseTotals_currency
purchaseTotals_grandTotalAmount

Related Information

API field reference guide for the Simple Order API

Simple Order Example: Processing an Authorization Using Discover ProtectBuy Authentication

Request

<merchantID>{{merchantID}}</merchantID>
<merchantReferenceCode>Postman-{{$timestamp}}</merchantReferenceCode>
<billTo>
  <firstName>John</firstName>
  <lastName>Doe</lastName>
  <street1>1295 Charleston Road</street1>
  <city>Mountain View</city>
  <state>CA</state>
  <postalCode>94043</postalCode>
  <country>US</country>
  <email>null@cybersource.com</email>
</billTo>
<purchaseTotals>
  <currency>USD</currency>
  <grandTotalAmount>1.01</grandTotalAmount>
</purchaseTotals>
<card>
  <accountNumber>4111111111111111</accountNumber>
  <expirationMonth>12</expirationMonth>
  <expirationYear>2023</expirationYear>
  <cardType>001</cardType>
</card>
<ccAuthService run="true"/>
billTo_city=Sao Paulo
billTo_country=BR
billTo_email=null@cybersource.com
billTo_firstname=Julia
billTo_lastname=Fernandez
billTo_postalCode=01310-000
billTo_state=SP
billTo_street1=R. Augusta
card_accountNumber=41111111XXXXXXXX
card_expirationMonth=12
card_expirationYear=2023
ccAuthService_run=true
ccAuthService_cavv=ABCDEFabcdefABCDEFabcdef0987654321234567
ccAuthService_commerceIndicator=pb
ccAuthService_xid=MID23
merchant_referenceCode=Merchant_REF
purchaseTotals_currency=mxn
purchaseTotals_grandTotalAmount=100

Response to a Successful Request

merchantReferenceCode=Merchant_REF
request_id=6461515866500167772420
decision=ACCEPT
reasonCode=100
purchaseTotals_currency=mxn
ccAuthReply_cardCategory=F
ccAuthService_reconciliationID=ZUDCXJO8KZRFXQJJ
ccAuthReply_reasonCode=100
ccAuthReply_amount=100.00
ccAuthReply_avsCode=5
ccAuthReply_authorizationCode=570110
ccAuthReply_processorResponse=1
ccAuthReply_authorizedDateTime=2022-03-01T161947Z
ccAuthReply_paymentNetworkTransactionID=111222