Re: [w3c/webpayments-methods-tokenization] What are the supportedCryptogramTypes? (#47) from Richard Waller on 2018-08-15 (public-webpayments-specs@w3.org from August 2018)

From: Richard Waller <notifications@github.com>
Date: Wed, 15 Aug 2018 01:21:52 -0700
To: w3c/webpayments-methods-tokenization <webpayments-methods-tokenization@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <w3c/webpayments-methods-tokenization/issues/47/413128253@github.com>

The UCAF/ 3DS style cryptogram is one potential version of a token cryptogram. 

EMVco define token cryptograms as implementation specific and can be variable length. 
 
As most networks are restricted by ISO 8583 standards, only certain fields are available to carry the cryptogram depending on the transaction type.  This also depends on what fields the merchant is certified to send information within.

UCAF/ 3DS style cryptogram is the most common for e-commerce transactions, but there is an option to provide other output data types to help restrict the domain and the use of that token.  

One example is a dynamic Security Code or Token verification value which is a 3/ 4 digit code which replaces the Card Security Code/ CVV on the back of a plastic card.




-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/w3c/webpayments-methods-tokenization/issues/47#issuecomment-413128253

Received on Wednesday, 15 August 2018 08:22:13 UTC