Dynamic CVV

The Dock platform enables the generation of Dynamic CVVs for purchases using virtual cards. This service replaces the static security code of a card, embossed behind it, with dynamic codes that reduce fraud cases associated with using these details during online transactions.

This functionality is important for consumers who avoid shopping online due to a lack of confidence to inform the details of the card. The increasing number of digital financial transactions is a factor highlighting the need in offering options for additional security layers against fraud to the cardholder.

The platform provides flexibility for the issuer to adjust the dynamic CVV to its business model, providing autonomy to define the time that will be used to update the dynamic CVV, thus avoiding some fraud scenarios where data are captured for been used in illicit transactions. As much as the fraudster tries to carry out a transaction with those cloned data, depending on the time determined by the issuer, the CVV will have already been updated.

📘

Note

If the Dynamic CVV feature is being used in tokenized Visa brand cards, it is necessary an adjustment between the issuer and the brand in a way for setting a non-validation of the CVV there. This validation should only take place at Odin, Dock's authorizer.


How Dynamic CVV works

For a better understanding of it, check the following example:

• The cardholder accesses the e-commerce, chooses the products they wish to buy and starts the checkout;

• The cardholder accesses their card issuer’s platform and activates the option for viewing their virtual card;

• The cardholder informs the details of the virtual card (card number, expiration date, and cardholder name) on the e-commerce;

• The cardholder activates the option for generating the Dynamic CVV on their card issuer’s platform;

• The cardholder informs the Dynamic CVV on the e-commerce and submits the purchasing for authorization;

• The cardholder views if the purchase was approved or denied.


Maintaining a Dynamic CVV

• In order to create a CVV, use the endpoint: Create new dynamic cvv;

• In order to consult the active Dynamic CVV, check the endpoint: Consult dynamic cvv;

• In order to expire the Dynamic CVV, use the endpoint: Expire dynamic cvv.

🚧

Attention

In order to comply with Payment Card Industry Data Security Standard (PCI DSS), it is necessary to meet the data security requirements if sensible details of the card are been stored, transferred or processed.


Dynamic CVV Setup

In case of interest in using the Dynamic CVV, the issuer must contact their commercial account manager, who will open a request to enable the CVV_Dinamico rule in the authorizer and perform the necessary configurations and tests.

In addition, it will be necessary to integrate with Dock's platform in order to access the dynamic CVV maintenance through the available endpoints.


Did this page help you?