The ECI value indicates the level of authentication that was performed on the transaction. The ECI value received from authentication is forwarded in the authorization request and also determines whether a transaction receives liability protection.
Visa, American Express, JCB, Discover/Diners, Cartes Bancaires (VISA), UPI
|05||Cardholder authentication successful.|
|06||Authentication was attempted but was not or could not be completed.
|07||Non-authenticated e-commerce transaction.|
Mastercard, Cartes Bancaires (Mastercard)
|00||3DS1 and EMV 3DS: 3DS authentication either failed or could not be attempted; possible reasons include both the card and Issuing Bank not being secured by 3DS, technical errors, or improper configuration.|
|01||3DS1 and EMV 3DS: 3DS authentication was attempted but was not or could not be completed; possible reasons include either the card or its Issuing Bank has yet to participate in 3DS, or the cardholder ran out of time to authorize.|
|02||3DS1 and EMV 3DS: 3DS authentication is successful; both card and Issuing Bank are secured by 3DS.|
|04||EMV 3DS: Data share only: non-authenticated e-commerce transaction, but merchants have chosen to share data via the 3DS flow with the issuer to improve authorization approval rates.|
|06||EMV 3DS: Acquirer exemption.|
|07||EMV 3DS: Recurring payments might be applicable for the initial or subsequent transaction. If this value is received on initial recurring payments, the merchant will have a liability shift. Subsequent transactions are considered as MIT and liability remains with the merchant.|