Verisign 128 bit and CVM authentication process
Security is a key concern for all parties when transacting online
business. We have ensured you have no worries on this front as you
expand your operations in cyberspace. We use CCAvenue as our payment
Listed here are some of the key security measures:
Handling customers' sensitive data
CCAvenue™ adopts stringent security measures to ensure that
critically sensitive information, such as your customer's personal
information and their credit card details, are well protected.
Our customers enter all their personal information and credit card
details on CCAvenue™ 's secure server and the same is encrypted
before it is transmitted over the Internet to the payment gateway.
Secure technologies for CCAvenue™ 's server.
CCAvenue™ 's server is behind state of the art security
firewalls to ensure maximum protection of your customer's details.
This guarantees that your information is inaccessible to any third
CCAvenue™ uses industry-standard SSL (Standard Sockets Layer)
Technology, which is used worldwide, for data encryption.
CCAvenue™ also follows strict in-house security guidelines for
ensuring confidentiality of your customer information.
Since the Payment Gateway application software is maintained at
CITIBANK'S secure high end server, new payment technologies,
standards and features are automatically implemented as they emerge.
The payment gateway is integrated with risk management component,
which empowers them with the ability to control risk effectively.
These robust risk management tools and fraud filters include:
Risk Management Rules and Parameters.
Risk Management Queries, thereby making your E-commerce transactions
safe and confidential.
Internationally Certified Security standards.
CCAvenue™ is registered with Verisign, the world's best and most
trust worthy Net Authentication Agency. Click
here to verify CCAvenue™'s certificate.
As you see, with CCAvenue™ as your partner, the benefits of the
latest technologies are yours without you having to change your
interface. Stay ahead in the rapidly changing landscape of
E-commerce. For now, no matter how fast the transactions grow in
volume, regardless of your website size or hosting environment,
things will never go out of control.
What is Card Verification Method (CVM)?
The Card Verification Method, or CVM , consists of a 3 or
4-digit numeric code that is printed at the back of the credit card
along with (after) the credit card number, where the card holder
signs in his signature on the card. This additional 3 or 4 digit
numeric code is not embossed on the card nor available in the
magnetic stripe. This additional 3 or 4 digit is code is featured /
incorporated on all Master Cards and Visa cards issued worldwide.
Visa calls this security feature as CVV2 and Master Card calls it as
The purpose of CVM is to ensure that the person submitting the
transaction is in possession of the actual card, since the code
cannot be copied from charge slips / receipts or skimmed from the
magnetic band. CCAvenue™ requests your customer to provide this
numeric code for your order and submits it with the authorization
through the Citibank gateway. The card processor (i.e. Visa or
Master Card) will then validate the code supplied with the number on
record for the specific card, and return a match/no-match response.
Keeping your customers secure
According to a Gartner Group survey, 98% of the credit card
numbers that the hackers / fraudsters are able to collect, are
through charge slips thrown away by retailers / restaurants /
shopping malls etc., This slip contains the card holder's name, the
15 or 16 digit credit card number and the expiry date. This extra 3
or 4 digit numeric code is not printed anywhere in the charge slip.
Therefore the hackers / fraudsters cannot use these credit card
numbers on CVM-validated transactions.
World Wide statistics have shown that fraud rates on transactions
with verified CVM codes have been significantly lower than those for
transactions without CVM (fraud rates on CVM-validated transaction
are reportedly 90% lower than those for non-CVM transactions).