Which is the most secure payment gateway for the Internet?

Forum Moderators: buckworks

Message Too Old, No Replies

Which is the most secure payment gateway for the Internet?

Require secure credit card transaction payments

Stephen Tiller

1:48 pm on May 23, 2003 (gmt 0)

I would like to know the best credit card facility for online ordering for the Internet. The reason for this is I am not satisfied with my present choice due to the fact that a customer placed an order on my website using a credit card. he filled out the address form on the website, then connected to the Payment Gateway for authorisation placing an order for a Ł1000 pounds only for the order to be fradulent.

The credit card address entered on the website was not verified by the Payment Gateway, only the Credit Card number was. The Credit Card turned out to be stolen.

I am hoping people can recommend what they use, but being new to this forum I am not sure if they are breaking any "rules" doing so.

Steve

SEO practioner

2:53 pm on May 23, 2003 (gmt 0)

Hello Stephen and welcome to webmaster world!

All I can recommend you is to use a well recognized credit card company such as visa, mastercard or amex.

Additionally, you will need to develop (or have develop) some kind of "intelligent" address verifier to insure your transactions are not bogus. It is possible to make such features available provided the exact needs are assessed from the beginning.

Good luck with your project.

SEO

Stephen Tiller

3:42 pm on May 23, 2003 (gmt 0)

Thanks for replying.

I was actually referring to PSP's (I think that's what they are called) such as Protx, WorldPay, PenPay etc. We also took the major credit cards.

Also it could be a web design issue. We have used EROL software to produce a catalogue which connects to one of these PSP's, plus Lloyds bank does the handling/processing. So is it the banks responsibility? Obviously I am still a bit naive in this area which is why I am asking for opinions and what major companies/manufacturers use etc.

We now only take offline email orders, so not surprisingly orders have dried up!

Regards

Steve

khuntley

7:50 pm on May 23, 2003 (gmt 0)

It is your payment gateway's responsibility to perform address verification (called AVS here in the U.S.). Although your merchant account provider may likely be able to provide more information.

Was it an international order? Your shopping cart may be able to turn off orders from Malaysia, Nigeria, etc. Many just turn off all of Asia and that stops the majority of fraud. We had never had an order from Asia that wan not fraud and just stopped accepting orders from there.

Kevin

tolachi

2:20 pm on May 24, 2003 (gmt 0)

I use authorize.net, which I have heard horror stories about but it works well for me.

You can turn AVS on or off or validate some or all of the address. There are also different levels of integration, from programing an interface with their api to more simple things.

We don't charge cards until we ship and we screen out $10,000 dollar orders from indondesia that way. To me it sounds like you may need to change your methodology a bit more than the gateway.

gsx

4:04 pm on May 24, 2003 (gmt 0)

"The credit card address entered on the website was not verified by the Payment Gateway"

What do you mean by that? They don't check it, or it did not match?

gibbon

2:51 pm on May 25, 2003 (gmt 0)

we use secpay at the moment for our transactions (we are in the uk)

however we have looked at commidea, does anyone have any experience of these guys (they say that they are the biggest etc)?

they may be cheaper for high volume transactions (you pay a flat fee)

Gibbon

ideavirus

8:27 am on May 27, 2003 (gmt 0)

If you are doing some high vlume transactions...i suggest go with bibit.com . they seems to be used by some big timers. If u can afford it...GO with them.

Cheers

mil2k

4:59 pm on May 27, 2003 (gmt 0)

What do you mean by that? They don't check it, or it did not match?

I think he means the Payment gateway fellas didn't verify the network it came from. There are some specific rogue networks and when orders come through those networks it is labelled as "Risky Transaction" and the client is informed. Actually go for a payment gateway which has some sort of manual check for the transactions to weed out suspicious transactions.