/AWS1/CL_PCD=>VERIFYAUTHREQUESTCRYPTOGRAM()
¶
About VerifyAuthRequestCryptogram¶
Verifies Authorization Request Cryptogram (ARQC) for a EMV chip payment card authorization. For more information, see Verify auth request cryptogram in the Amazon Web Services Payment Cryptography User Guide.
ARQC generation is done outside of Amazon Web Services Payment Cryptography and is typically generated on a point of sale terminal for an EMV chip card to obtain payment authorization during transaction time. For ARQC verification, you must first import the ARQC generated outside of Amazon Web Services Payment Cryptography by calling ImportKey. This operation uses the imported ARQC and an major encryption key (DUKPT) created by calling CreateKey to either provide a boolean ARQC verification result or provide an APRC (Authorization Response Cryptogram) response using Method 1 or Method 2. The ARPC_METHOD_1
uses AuthResponseCode
to generate ARPC and ARPC_METHOD_2
uses CardStatusUpdate
to generate ARPC.
For information about valid keys for this operation, see Understanding key attributes and Key types for specific data operations in the Amazon Web Services Payment Cryptography User Guide.
Cross-account use: This operation can't be used across different Amazon Web Services accounts.
Related operations:
Method Signature¶
IMPORTING¶
Required arguments:¶
IV_KEYIDENTIFIER
TYPE /AWS1/PCDKEYARNORKEYALIASTYPE
/AWS1/PCDKEYARNORKEYALIASTYPE
¶
The
keyARN
of the major encryption key that Amazon Web Services Payment Cryptography uses for ARQC verification.
IV_TRANSACTIONDATA
TYPE /AWS1/PCDHEXLENGTHBETWEEN2AN02
/AWS1/PCDHEXLENGTHBETWEEN2AN02
¶
The transaction data that Amazon Web Services Payment Cryptography uses for ARQC verification. The same transaction is used for ARQC generation outside of Amazon Web Services Payment Cryptography.
IV_AUTHREQUESTCRYPTOGRAM
TYPE /AWS1/PCDHEXLENGTHEQUALS16
/AWS1/PCDHEXLENGTHEQUALS16
¶
The auth request cryptogram imported into Amazon Web Services Payment Cryptography for ARQC verification using a major encryption key and transaction data.
IV_MAJORKEYDERIVATIONMODE
TYPE /AWS1/PCDMAJORKEYDERIVATIONMDE
/AWS1/PCDMAJORKEYDERIVATIONMDE
¶
The method to use when deriving the major encryption key for ARQC verification within Amazon Web Services Payment Cryptography. The same key derivation mode was used for ARQC generation outside of Amazon Web Services Payment Cryptography.
IO_SESSIONKEYDERIVATIONATTRS
TYPE REF TO /AWS1/CL_PCDSESSKEYDERIVATION
/AWS1/CL_PCDSESSKEYDERIVATION
¶
The attributes and values to use for deriving a session key for ARQC verification within Amazon Web Services Payment Cryptography. The same attributes were used for ARQC generation outside of Amazon Web Services Payment Cryptography.
Optional arguments:¶
IO_AUTHRESPONSEATTRIBUTES
TYPE REF TO /AWS1/CL_PCDCRYPTOGRAMAUTHRSP
/AWS1/CL_PCDCRYPTOGRAMAUTHRSP
¶
The attributes and values for auth request cryptogram verification. These parameters are required in case using ARPC Method 1 or Method 2 for ARQC verification.