Content deleted Content added
m Tag correct text as {{proper name}} for automated spell checkers (including Wikipedia:Typo Team/moss) |
|||
Line 11:
CSC was originally developed in the UK as an eleven-character alphanumeric code by [[Equifax]] employee Michael Stone in 1995. After testing with the [[Littlewoods]] Home Shopping group and [[NatWest]] bank, the concept was adopted by the UK [[Association for Payment Clearing Services]] (APACS) and streamlined to the three-digit code known today. [[Mastercard]] started issuing CVC2 numbers in 1997 and [[Visa Inc.|Visa]] in the United States issued them by 2001. [[American Express]] started to use the CSC in 1999, in response to growing [[e-commerce|Internet transactions]] and card member complaints of spending interruptions when the security of a card has been brought into question.
[[Contactless payment|Contactless]] card and chip cards may electronically generate their own code, such as {{proper name|iCVV}} or a ''dynamic'' CVV.
== Naming ==
Line 33:
* The first code, 3 numbers, called CVC1 or CVV1, is encoded on track one and two of the [[Magnetic stripe card|magnetic stripe]] of the card and used for card present transactions, with signature (second track also contains pin verification value, PVV, but now it is usually all zeroed out and service code). The purpose of the code is to verify that a payment card is actually in the hand of the merchant (thus it should be different from CVV2). This code is automatically retrieved when the magnetic stripe of a card is read (swiped) on a [[point-of-sale]] (card present) device and is verified by the issuer. A limitation is that if the entire card has been duplicated and the magnetic stripe copied, then the code is still valid, even though you usually need to sign after that. (See [[Credit card skimming|credit card fraud § skimming]].)
* The second code, and the most cited, is CVV2 or CVC2. This code is often used by merchants for [[card not present transaction]]s including online purchases. In some countries in Western Europe, card issuers require a merchant to obtain the code when the cardholder is not present in person. Uses service code 000.
* Contactless and/or chip [[EMV]] cards supply their own electronically generated codes, called {{proper name|iCVV}}. Uses service code 999. It is described in public standards from EMVCo.
* Consumer Device Cardholder Verification Method (CDCVM for short) is a type of identity verification in which the user's mobile device (such as a smartphone) is used to verify the user's identity; for example, it can use the device's [[biometrics]] authentication features (e.g. [[Touch ID]] or [[Face ID]]), or the device's set [[password|passcode]]. It is supported by a number of payment systems, such as [[Apple Pay]],<ref>{{cite magazine|url=https://www.wired.co.uk/article/apple-pay-uk-payments-cap|title=Apple Pay £20 limit in the UK will 'change over time'|magazine=Wired UK|date=2015-06-24|accessdate=2022-06-24}}</ref> [[Google Pay (payment method)|Google Pay]]<ref>{{cite web|url=https://www.avira.com/en/blog/breakthrough-mobile-payments-google-pay-launched-in-germany|title=Breakthrough for mobile payments? Google Pay launched in Germany|website=[[Avira]]|date=2018-07-17|accessdate=2022-06-24}}</ref> or [[Samsung Pay]].<ref>{{cite web|url=https://www.sammobile.com/news/samsung-pay-australian-users-allow-high-value-purchases-without-pin/|title=Samsung Pay now allows Australian users to make high-value purchases without PIN|website=SamMobile|date=2020-09-22|accessdate=2022-06-24}}</ref>
| |||