Subsequent Transactions implementation * ** On the request to the Gateway, the merchant developer has to pass all the required variables that pertain to a subsequent transaction so as to make sure that the iVeri Gateway handles the request appropriately. Variables that should be present in the request to the iVeri Gateway are as follows: The Lite_PanFormat must be set to TransactionIndex  Set the Lite_TransactionIndex to the actual TransactionIndex value e.g {000000-000000- 000-0000 0000000}  Set the Ecom_Payment_Card_Number to the Dotted PAN value Note:* These variables are defined in 8.2 iVeri specification. In addition to these the merchant will still need to pass all the other required variables.

Then merchant token generation is a security measure introduced to hash merchant and transaction specific data elements, using SHA256 hashing algorithm. An effort which reduces the risk of data being exposed or intercepted by 3rd parties during the submission of transaction requests to the gateway.

Prerequisites * ** The below parameters must be set in the merchant Backoffice Enable Token Verification to “Yes” (By default this parameter is set to “No”)  Populate the Lite Shared Secret key parameter. Maximum length 32 characters (alpha-numeric)

Requirements * ** Merchants must generate the token on their web server and pass the generated token to the transaction request. The generated token must encompass the following data elements: Lite_Order_Amount: Total amount of the order Lite_Merchant_ApplicationId – The merchants app ID must be in uppercase and in curly brackets Ecom_BillTo_Email - The cardholder Email address TimeStamp – The timestamp when the token is generated Resource - Lite/Authorise.aspx SharedSecret - as configured in the merchants application in backoffice The parameters utilized in the hash token generation process must correspond exactly to those submitted via the form Post method to ensure token integrity and validation. **

Token Verification Logic in the Hosted Payment Page * ** If Enable Token Verification has been set to YES and Lite Shared Secret has not been set an exception will be thrown when submitting a transaction request If Enable Token Verification has been set to YES and Lite_Transaction_Token has not been set an exception will be thrown when submitting a transaction request  If Enable Token Verification has been set to YES and the Lite_Transaction_Token does not match the calculated token an exception will be thrown

Merchant Hash Token Generation * ** /* *secretKey - Lite Shared Secret *resource - /Lite/Authorise.aspx *applicationId - {435407B0-8A28-4152-9649-A932423F72EB} *amount - Lite_Order_Amount *emailAddress - Ecom_BillTo_Email */ public static string GenerateTransactionToken(string secretKey, string resource, string applicationId, string amount, string emailAddress) { string time = Convert.ToString(UnixTimeStampUTC()); string token = secretKey + time + resource + applicationId + amount + emailAddress; return String.Concat(time, ":" + GetHashSha256(token)); } public static Int32 UnixTimeStampUTC() { Int32 unixTimeStamp; DateTime currentTime = DateTime.Now; DateTime zuluTime = currentTime.ToUniversalTime(); DateTime unixEpoch = new DateTime(1970, 1, 1); unixTimeStamp = (Int32)(zuluTime.Subtract(u

* *Visa Check-Out is a digital representation of a cardholders Visa Card. Cardholders can register their debit or credit cards by downloading the Visa Check-Out app. Once cardholders have their profiles and card details loaded in Visa Check-out, they are able to make purchases at merchants who are accepting with Visa Check-Out payments. The Visa Check Out process flow explained below showcases the different parties involved.

Process Flow in Visa Check-Out with Lite * ** Cardholder selects Visa Check-Out as payment method iVeri Lite calls Visa Light Box or Widget and presents it to the Cardholder to Login Cardholder Logins via Visa Light Box Cardholder selects a card and presses Continue Upon clicking Continue, iVeri Lite receives a Call ID (uniquely identifies the transaction) iVeri Lite uses the Call ID to get the Payload from Visa services Payload is returned by Visa services to iVeri Lite iVeri Lite decrypts the Payload and retrieves the PAN iVeri Lite sends the transaction request to the gateway/acquire When the response is received, Visa services is updated with either a Failed or Successful response Lastly, a redirect to the merchant with the transaction response is made.

Illustration of Visa Check-Out Process With iVeri Lite* ** Image [1] [1] data:image/jpeg;base64,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

MasterPass is a safe and easy way in which merchants can present the QR code which customers can scan using a MasterPass application to affect a payment. */Requirements/* Merchant must be onboarded for MasterPass on the iVeri Gateway and on the MasterPass platform.