uShop English (U.S.) for 179!

uStorekeeper English (U.S.) for 149!

 Tech Support
       Support Policy
       Knowledge Base
       Reference Sites
       Software Piracy
       Legal Notices
       Privacy Policy
       Reseller Info
       Contact Us
       Site Map
AVS and CVV2/CVC2 fraud protection

Knowledge Base Lobby : uShop Support Conference : General Questions
Jul-21-18 03:57 AM EST
Original Message
AVS and CVV2/CVC2 fraud protection
Author dan on 10-29-2002 at 13:26 (EST)
Since MULTICARDS started with collecting the
CVV2/CVC2 numbers - Fraud is not present anymore -why can this 3 digit number not be collected in the UShop ? Or can it ?
Almost all card processing systems include this possibility ..

Table Of Contents
  RE: AVS and CVV2/CvC2 fraud protection Microburst Support Team, 2002-10-29 13:42:32 (1)
            RE: AVS and CVV2/CvC2 fraud protection Tom Chapman, 2003-01-06 16:43:00 (2)
                 RE: AVS and CVV2/CvC2 fraud protection Bill Weiner, 2003-01-07 07:43:11 (3)
                      Not writing to .order file Tom Chapman, 2003-01-07 21:03:14 (4)
                           RE: Not writing to .order file Bill Weiner, 2003-01-08 06:17:18 (5)
                                Thanks Tom Chapman, 2003-01-08 13:04:32 (6)
            cc_issue field Norma Scott, 2003-07-25 18:45:13 (7)
                 getting there Norma Scott, 2003-07-25 18:59:20 (8)
                      more questions Norma Scott, 2003-07-25 19:18:46 (9)

Messages In This Discussion
         1. RE: AVS and CVV2/CvC2 fraud protection
        Author Microburst Support Team on 10-29-2002 at 13:42 (EST)
There are various ways that this information can be collected.

The creditcard_template.html file currently allows for 5 credit card fields:
1. cc_type
2. cc_name_on_card
3. cc_number
4. cc_expiration
5. cc_issue

If you are not already utilizing the "cc_issue" number field - then the easiest thing to do would be to just add that "cc_issue" field to your template and give it any label you want.

                 2. RE: AVS and CVV2/CvC2 fraud protection
                Author Tom Chapman on 01-06-2003 at 16:43 (EST)
I am already using the cc_issue field for Switch Cards - Streamline have just started to ask for the verification number on ALL Customer Not Present transactions (including Switch).

How can I add an additional input field?


Tom Chapman
                         3. RE: AVS and CVV2/CvC2 fraud protection
                        Author Bill Weiner on 01-07-2003 at 07:43 (EST)
The easiest thing to do would be to just choose a label for the "Issue" field so that it requests both the issue number and the CCV number, such as: "Issue Number and CCV Number:". This will store both values in the issue field... but all you are really looking for is a way to collect that information anyway.

Or as a slightly more involved (yet more elegant) option, below are instructions on how to add an extra field to the Credit Card form:

STEP 1: Make a backup of your script... just in case.

STEP 2: Open the file with any text editor such as WordPad.

STEP 3: Do a search on the following line:

$cc_issue = &validate_string($cc_issue);

STEP 4: Immediately AFTER that line, add these three lines:

$cc_code = $form_text{'cc_code'};
$cc_code = &validate_string($cc_code);
$cc_issue .= " / " . $cc_code;

STEP 5: Save the script... as TEXT if your editor asks.. and try it out!

This will allow you to add a new text field to your creditcard_template.html called "cc_code" and will append that value onto the issue number.

Note: Before making this modification, you may want to check the laws in regard to collecting the CCV numbers. I think I read somewhere that CCV numbers cannot be stored in any electronic form. (ie. you have to call and verify the number unless you are using a payment processing system that validates the CCV number in real-time and does not store it.)
                                 4. Not writing to .order file
                                Author Tom Chapman on 01-07-2003 at 21:03 (EST)
Many thanks for the quick reply.

I made the following changes to the script:

# From Credit Card Template.
$cc_type = "";
$cc_name_on_card = "";
$cc_number = "";
$cc_expiration = "";
$cc_issue = "";
$cc_code = $form_text{'cc_code'};
$cc_code = &validate_string($cc_code);
$cc_issue .= " / " . $cc_code;

I didn't have the complete cc_issue entry in my original script so I just added the new lines underneath.

The new form field (cc_code) is not writing to the order file - I have checked this both through the order reader and by looking at the text of the .order file as well.

Any suggestions? I have double checked the form to make sure the form field names are correct.


                                         5. RE: Not writing to .order file
                                        Author Bill Weiner on 01-08-2003 at 06:17 (EST)
It doesn't look like you added the lines to the correct place in the script. Look for the line:

$cc_issue = &validate_string($cc_issue);

... within the "validate_credit_card_parameters" subroutine... and add the additional three lines there.

NOTE: You may have to do the search on just "&validate_string($cc_issue);" to locate that line because there are some additional spaces after the "=" sign... but they are not showing up in this forum.
                                                 6. Thanks
                                                Author Tom Chapman on 01-08-2003 at 13:04 (EST)
Thanks Bill - it all working great now!

                 7. cc_issue field
                Author Norma Scott on 07-25-2003 at 18:45 (EST)
I need to implement the CVV2/CVC2 support. I do not seem to have the cc_issue field in my credit card template file. It mentions it in the header, but when I look in the body of the file, it's not there. Am I supposed to add it and how so? Thanks.
                         8. getting there
                        Author Norma Scott on 07-25-2003 at 18:59 (EST)
I think I at least partially answered my own question. I copied the "name" lines and just changed the text and used the cc_issue designation. Will this automatically write correctly to the order so I will be able to retrieve it using the Order Reader? Or do I still need to do something else? Thanks.
                                 9. more questions
                                Author Norma Scott on 07-25-2003 at 19:18 (EST)
Ok, I have a related question for you. I need to be able to collect that CCV code (we recently switched from a PC based process to a card swipe process to speed things in our brick/mortar store, and in order to do internet orders, that security code is required), but I don't want it to print out on the Order Reader form because we print that as a packing slip for the customer's order. I wouldn't want that slip to fall into the wrong hands, who would be able to use the credit card info "legally" because they have the CCV number. Any ideas for a solution?

© 2003 Microburst Technologies, Inc.