The reply field auth_cv_result can now contain the following new values:
If CyberSource does not support card verification for a processor or card type, the reply field auth_cv_result now contains the value 1 instead of S.
Vital customers can now process card verification numbers for MasterCard cards.
FDC South and Vital customers can now process card verification numbers for American Express cards.
Important If you want to use the American Express card verification number, contact American Express for an application. Do not send card verification numbers until American Express approves your application.
For American Express cards, card verification numbers are processed as follows:
If CyberSource receives a card verification response from the processor, then you now receive the reply field auth_cv_result_raw, which contains the response sent by the processor. CyberSource does not control the contents of this field.
Address Verification Service (AVS)
The reply field auth_auth_avs can now contain the following new values:
If CyberSource does not support AVS for a processor or card type, the reply field auth_auth_avs now contains the value 1 instead of E.
For FDC Nashville customers, CyberSource supports AVS for Visa, MasterCard, American Express, and Discover cards.
For FDC South customers, CyberSource supports AVS for Visa, MasterCard, American Express, and Discover cards when the value of the request-level field bill_country is US. If AVS is processed for an unsupported card type, the reply field auth_auth_avs contains the value 2.
For Vital, CyberCash, and Paymentech customers, CyberSource processes AVS for all card types.
If CyberSource receives an AVS response from the processor, then you now receive the reply field auth_avs_raw, which contains the response sent by the processor. CyberSource does not control the contents of this field.
For Citibank Meerbusch customers, the ics_bill and ics_credit applications now accept the request-level field merchant_vat_registration_number, used to specify your company's VAT registration number for Level II processing.
For Citibank Meerbusch customers, the ics_bill and ics_credit applications no longer use the request-level field purchaser_code.
If a request for the ics_auth application is declined, the server now returns the reply field auth_auth_response.
If a request for the ics_auth application receives a soft decline (DAVSNO, DCALL, or DCV), the server now returns the reply field auth_auth_time.
If you request both the ics_score and the ics_auth applications, you can now include the request-level field card_type without causing the transaction to fail.
If you attempt to use the ics_credit application to request a standalone credit, the server now returns the reply flag DINVALIDDATA.
If you request the ics_risk_update application, you cannot include any other applications in your request.
For the ics_get_isv_info application, the reply field get_isv_info_isv_status can now contain the value Cancelled.
For the ics_modify_isv application, the offer-level field isv_status can now contain the value Cancelled.
You can now use a new report, the Enhanced Audit Report with Expired Certificates, to get information about certificates that expired during a date range that you specify.
If the value of the offer-level field "quantity" is invalid, you will now receive the reply flag DINVALIDDATA.
Only the following applications return the reply flag DRESTRICTED:
Japan customers will never receive the DRESTRICTED reply flag.
If you open a connection to CyberSource's server and do not send any data within 20 seconds, the request will time out.
You can no longer request the ics_notify application.