Operation of the virtual TPV (SIS) and guarantees of Security (systems and footbridges of payment by credit cards by Internet)
The virtual TPV (SIS) is a prepared device to work totally surely in way within the operative one of sales through Internet, is to say:
A. - It will contact with the bank of issue of the card to ask for the authentication of the holder (verification of its identity) before asking for the corresponding request of authorization. Of this form it is guaranteed that single the genuine holder, owner of the card, will be able to operate with her.
B. - SSL in all the communications Implements that prevent the interception of the information by third (Maxima encriptaci�n). Therefore, the confidentiality is assured in all the communications that settle down during the transaction.
C. - Also it qualifies mechanisms to prove the authenticity of the origin of the transactions and that they prevent, also, the data manipulation by third. This form the integrity of the data of the transaction makes sure.
D. - The data of cards are not known by the commerce, with which it is avoided that this information can later be used by third of fraudulent form. (the best way to safeguard in the commerce a sensible information of clients is not to have it). This information is stored properly by the Virtual TPV that will as well provide it to the system of payments when it is necessary (for example in a return). Therefore, all the transactions that are made through the Virtual TPV will count on all the guarantees of security, confidentiality and integrity for the participant agents: card holders and their emitting organizations, and commerce and their organizations purchasers. The Virtual TPV will be updated with the last versions of safe payment that they are dictating the international organisms, although makes sure that the commerce will not have to make adaptations, since these will be always made of centralized form.
1. The commerce contacts with the Virtual TPV and it facilitates the data to him of the transaction: the amount, the currency, the identificativo and name of the commerce.
2. The Virtual TPV asks for the card and date of lapsing to the client.
3. The Virtual TPV contacts with the financial organization that has emitted this card.
4. The emitting organization asks for authentication to the client. The client can prove his identity by means of one password, a telephone call, etc. according to has decided with his emitting organization.
5. The Virtual TPV asks for authorization to the emitting organization by the traditional circuits of payment means. It can happen in some case that the emitting organization and the holder of the card have still not agreed to any method of authentication, reason why step 4 not always is made, although from the point of view of the commerce the transaction continues being safe, this is: The HOLDER CANNOT REPUDIATE IT, although the client has not authenticated, since the international organisms as VISA and MasterCard force the emitter of the card to assume this responsibility in these cases. An exception in the case of cards MasterCard without key of authentication of the U.S.A., Canada, Latin America and the Caribbean exists: the transactions made with these cards can be repudiadas.
Reply With Quote
Bookmarks