PayPal confirmation deposits (a few cents) go to a bank account. You don't make "deposits" to traditional credit card accounts. You can "credit" a credit card account but be prepared to explain why if there was no corresponding charge to the card by you. A confirmed AVS and CVV are reasonable verification.

You can "credit" a credit card account but be prepared to explain why if there was no corresponding charge to the card by you.

This method of confirming a card's owner is actually perfectly acceptable and fairly common among sites that offer services where an escrow account is held by a buyer/purchaser.

There is no crediting or depositing to mention. The process begins when a merchant places an (or a series of) authorization a cardholder's account for a specific dollar amount (usually less than $1). The authorization is never captured by the merchant so a charge never results, however, the authorization amount usually becomes visible to the cardholder after about three business days depending on the card issuer.

Any such system that I've ever come across have been proprietary and complicated.

Yes, I probably didn't make that too clear. The idea would indeed be to charge the card a small amount and have the user retrieve either a unique amount (as you rightly say justgowithit) or a unique code alongside a fixed amount, off his statement. Since we offer a global online service retrieving a unique amount is tricky as the banks will generally convert it into the domestic currency and publish this on the statement. Which only leaves us with the unique code option...

Bear in mind we already have all manner of fraud checks in place already, but seemingly high risk transactions can on occasion
occasion be totally honest. Verifying via statement at least gives them an opportunity to prove they are the card holder.

The "unique code" code that you're talking about would be the authorization code for the specific authorization(s) that you place on the cardholder's account.

The authorization code is generated by the issuer after the authorization is initialized by the merchant (you) and then sent back to the gateway or processing equipment. Given the fact that you won't have any way of knowing what the auth code will be prior to the reply you'll have to create quite a multi-step process.

Most merchants that I know of who utilize such a system will only verify a customer via authorization code manually. Of course, if you're going to do that with every customer this is not really practical.

I think the poster is referring to a unique code on the line item that would show the biller. For example:

Blue Widget Dealer (ABC123)

ABC123 being the unique code.

unique code on the line item that would show the biller

The "line item" would be the merchant's DBA name attached to their merchant account. This can't be modified for each transaction in order to display a unique code.

2Checkout, Paypal, and Google Checkout are able to do this...

You can random vary the amount of the authorization - between .01 and .99 - ask the user to enter the amount you authorized as the code.

Thus far I haven't found a gateway or processor which can offer the "unique code on a cc statement" feature though. Anyone successfully done this? Anyone know how paypal manage to do it?

In Paypal the user must provide the amount of the deposits thru an interface on their paypal account screen. I'm not privy to Paypals IT system but I would assume it is fairly sophisticated and proprietary.

You might say something concerning the end purpose of the level of confirmation/verification you're trying to achieve and you may get some other less complex ideas from the members here.

Yup, spot on sun818. That is exactly what I'm referring to, and as you say Paypal, 2checkout, etc do offer this. I have a feeling that there may some underlying banking signalling layer that they are privy to, that an ordinary merchant or processor are not able to access. Any banking techies out there?

Dartman, the reason we need this is to screen high risk transactions efficiently. Typically we require authorization for risky transactions whereby the user must send in credit card statement for the card used manually via email or fax. This is a tedious and time consuming process for both the user and our service centre.

As I mentioned earlier Stajer we cannot use the random amount option as its generally converted into the domestic currency on the statement with no reference to the original currency amount or the exchange rate used (we have tested this in 3 countries).

Perhaps Paypal, 2checkout, etc. can do this because they're third-party accounts.