Escolar Documentos
Profissional Documentos
Cultura Documentos
Version 0.5(Draft)
October 2006
_____________________________________
-0-
-1-
Version
Comments
September 5,
2006
0.1
September 28,
2005
0.2
October 13,
2006
0.3
October 27,
0.4
0.5
2006
November 17,
2006
-2-
CONTENTS
1
Scope ...........................................................................7
1.2
1.3
Security ........................................................................8
1.3.1 Link between 3PAs and Zimswitch ...........................8
1.3.2 Card Presence Transactions (POS/ATM)....................8
1.3.3 Message Authentication..........................................8
1.3.4 Key Management ..................................................8
1.4
Communication ..............................................................9
1.5
Call Setup......................................................................9
1.6
1.7
1.8
1.9
1.10
1.11
1.12
-3-
2.2
Bitmaps.......................................................................15
2.3
2.4
2.5
Message Flow...............................................................17
2.5.1 Message and Transaction Flows.............................17
3.2
3.3
Message Handling.............................................................. 20
4.1
4.2
4.3
4.4
4.5
4.6
4.7
REVERSAL PROCESSING................................................24
4.8
LOGOFF.......................................................................25
4.8.1 ACQUIRER FI LOGOFF..........................................25
-4-
4.9
FIELD 1
5.2
5.3
5.4
5.5
5.6
5.7
5.8
5.9
5.10
5.11
FIELD 19
5.12
FIELD 22
5.13
5.14
5.15
5.16
FIELD 28
5.17
5.18
5.19
5.20
5.21
5.22
5.23
-5-
5.24
5.25
5.26
5.27
5.28
FIELD 56
5.29
FIELD 59
5.30
5.31
5.32
5.33
5.34
5.35
5.36
Appendices ................................................................................. 55
Appendix A Glossary............................................................55
-6-
General Points
1.1
Scope
ATM transactions
1.2
Authorisation Criteria
The one exception to this rule pertains to 1400 messages which are reversal
messages which are mandatory, 'must deliver' messages. An Acquirer is
obliged to keep repeating reversal messages until such time as they are
acknowledged by the Issuer. It can happen that an Issuer goes 'off-line' to
ZimSwitch environment after having authorised a transaction which
subsequently fails at the Acquirer for any number of reasons. In these
circumstances, the Acquirer repeats the reversal endlessly without there being
-7-
any possible acknowledgement from the Issuer. This endless repetition creates
stress in all the systems involved. Hence if ZimSwitch receives a reversal for an
Issuer who is off-line to the switch, ZimSwitch will intervene and acknowledge
the reversal and effectively store and forward it, thus taking responsibility for
the risk and the delivery of that transaction. If such a transaction has still not
been delivered at cut-off, it will be reported in the settlement reports.
1.2.2
PIN Authorisation
All Card Presence transactions will be PIN based. However there are some
Issuers who have issued cards that require signature authorisation at POS e.g.
Barclays Bank Zimbabwe. Zimswitch POS acquirer terminals can prompt for
PIN or signature verification, according to BIN number. However it is still a
single message authorisation process, and Zimswitch and Zimswitch
participants accept no risk liability with regard to these signature authorised
transactions. All risk lies with the Issuer.
Card not present transaction will not require a PIN across Zimswitch.
1.3
Security
1.3.1
The 3PA must ensure that the security procedures in use meets the
requirements of ZimSwitch and its Issuers.
To authenticate and secure the link between the 3PA and Zimswitch a Secure
Socket Layer (SSL) session will be used.
1.3.2
Message Authentication
To ensure that messages are not tampered with between 3PAs and ZimSwitch,
all messages to Zimswitch from the 3PAs must be transmitted using a Message
Authentication Code (MAC). Message authentication operates by sharing an
operational Message Authentication Key (KWA) between two systems. This key
is exchanged under a mutual Key Encrypting Key (KEK).
The MAC generation algorithm is based on the DES CBC mode and is specified
in the ANSI X9.9 standard.
1.3.4
Key Management
The key management scheme to be employed between ZimSwitch and the 3PA
-8-
is the Zone Working Key scheme. ZimSwitch will be the sole provider of both
key types. The Zone Working Key is provided over the interchange. Each end
of the link holds a Zone Control Master key which is established by the three
person manual key loading scheme. The frequency with which the Zone
Working Keys are changed is at ZimSwitch discretion.
1.4
Communication
The 3PA will connect to Zimswitch via a TCP/IP server connection. As TCP is a
stream-oriented protocol the first two bytes of any message arriving at
ZimSwitch indicates the length of the message (excluding the length indicator).
Similarly, a two byte length indicator is prefixed to any message sent by
Zimswitch.
The length indicator is packed as an unsigned 16-bit integer, with the most
significant (the high 8 bits) in the first byte, and the least significant (the low 8
bits) in the second byte.
1.5
Call Setup
At Call Set-up time the 3PA must establish a TCP/IP client connection to
ZimSwitch This may be over a single physical link, or distributed over the dual
links which each 3PA supports. The latter would be preferable as this provides
automatic redundancy in case of a single failure.
Once established, the TCP/IP connection should remain permanently connected
and should only be cleared under exception conditions (i.e. bad line conditions,
etc.). If the connection is cleared for any reason, the 3PA should automatically
attempt to re-establish the TCP/IP session at regular intervals of no less than 5
seconds.
Once a connection has been established the 3PA must initiated a Logon
1.6
Cut off
1.7.1
Current Cards
1.7.2
VISA
MasterCard
-9-
American Express
Diners Club
International Cards
Maestro
Electron
Smart Cards
1.8
Digits n+1 to 16 =
1.9
ZimSwitch has elected not to have Acquirer and Switch fees travel in each
message but to be determined by parameter at settlement time. Fees will not
travel with transaction messages as the fee field concerned (field 46) is related
to on-line reconciliation, whereas ZimSwitch settlement and reconciliation is
performed as a batch operation, after the event.
Acquirer and Switch fees are determined by the participant Financial
Institutions in agreement with each other and are entered to the switch as
parameters to a table for the purposes of settlement and for reporting.
1.9.1
Reversals
1.9.2
Fee Management
These charges are subject to change on agreement by the participants and will
be managed by ZimSwitch.
1.9.3
Unknown ISID
1.9.4
See Zimswitch User Manual (to be replaced by Zimswitch Operating Guide) for
-10-
current Fees and charges which are not strictly relevant to Technical
Specification.
However, for Settlement purposes, the basic points need to be noted here. The
basic transactions that are permissible across the ZimSwitch network,
depending on the policies and capacities of each participating FI are as follows:
Purchase at POS
Reversals at ATM
TBAs
-12-
Key Exchange
Acquirer
AWK encrypted
under ZMK 1
IWK encrypted
under ZMK 2
ZimSwitch
Issuer
Message Transmission
Acquirer
PIN encrypted
under AWK
PIN encrypted
under IWK
ZimSwitch
Issuer
PIN translation,
Acquirer to Issuer
zone
HSM
ZMK1 refers to Zone Master Key for Bank 1 ( in this case as Acquirer)
ZMK2 refers to Zone Master Key for Bank 2 ( in this case as Issuer )
AWK refers to Acquirer Working Key
IWK refers to Issuer Working Key
AWK can also be referred to as Outbound Key
IWK can also be referred to as Inbound Key
The Zone Master Keys will be introduced to the Hardware Security Modules
(HSM) at ZimSwitch and at FI sites by FI personnel.
-13-
Store and Forward will be introduced to ZimSwitch. This will cover Reversal
processing. The 3PA will deliver a reversal to ZimSwitch when appropriate
exactly as it does in the current system. It will be the responsibility of
ZimSwitch to deliver this reversal to the Issuer FI. If the Issuer FI is available
and does not time out to ZimSwitch, the latter will forward the Reversal
Response from the Issuer FI to the 3PA. If the Issuer FI is not logged on to
ZimSwitch or the response times out, ZimSwitch will store the reversal for later
delivery and will immediately respond to the 3PA with a code indicating
acceptance of the Reversal.
The Issuer FI must accept this message. In the unlikely event that the Issuer
FI rejects the Reversal (inability to match to the original request should be the
only criteria) when it is received from the ZimSwitch store and forward
process, ZimSwitch will log the rejection for off-line reconciliation between the
relevant FIs.
ZimSwitch will retain all un-delivered transactions in its store-and-forward
(SAF) file even and especially if an FI is off-line to ZimSwitch at the time of
cut-off.
ZimSwitch will hold transactions in its SAF file for varying and appropriate
lengths of time, but will clear its SAF files manually by FI on an as and when
needed basis. All such cleared transactions will be reported.
-14-
Message Structure
The messages passed between the 3PA and ZimSwitch are to be constructed
with the basic message structure prescribed by ISO8583.
Messages are constructed in the sequence:
bitmap(s)
data elements
Message Type
Identifier
Bit map 1
Bit map 2
(Optional)
Data elements
4 bytes
64 bits (8
bytes)
64 bits (8
bytes)
variable
according to bit
maps
fields 01 64
fields 65 - 128
bit on = field
present
2.1
This is a 4-digit field which identifies the type of message. The first 2 digits
describe the class of message. The following classes are used in this
specification:
2.2
12XX
14XX
18XX
Bitmaps
Each bitmap represents 64 bits of data. The value of each bit within a bitmap
represents the presence (value '1') or absence (value '0') of a corresponding
data element in the message. The exception to this principle applies to the first
bit within the primary bitmap, which, when valued at '1', denotes the presence
of an additional, contiguous bitmap and not the presence of a data element.
-15-
The secondary bitmap is optional and will only be included for those messages
requiring field(s) beyond 64.
For transmission purposes each bitmap of 64 bits is converted to 8 bytes. The
64 bits are first converted into 16 groups of four. Then, each group of four bits
is assigned an hexadecimal equivalent according to the table shown on the
next page:
BIT
2.3
VALUE
HEX
VALUE
0000
0001
0010
0011
0100
0101
0110
0111
1000
1001
1010
1011
1100
1101
1110
1111
Data Elements
The bitmap serves as an index of data elements that are present in the
message. In terms of ISO8583, some elements are mandatory for certain
message types, others are optional.
The data elements (fields) which will be used in the messages in this
specification are detailed in Section 5.
2.4
2.4.1
-16-
Field 37
Field 12
Field 32
Ref.Ret.No. is anything which is unique for the acquirer e.g. terminal no.
+ sequence no. These fields will be echoed in the response and will be
inserted into field 56 for Reversal processing.
2.4.2
Field 37
Field 12
The responses to these messages must reflect the fields noted as echoed data
at least.
The 1993 edition of ISO 8583, introduces the concept of matching transactions
in addition to matching messages and to this end introduces field 37, Retrieval
Reference number. Please be guided by section 6.3 of the 1993 standard
2.5
Message Flow
2.5.1
Not Applicable.
-17-
Error Handling
Message Rejection
3.1.1
General
If the message type is recognised and supported but the contents cannot
be processed, then the receiver is to reply with the appropriate response
message with the response code field signifying the reason for the error,
e.g. code 30 'format error'.
If ZimSwitch is aware that the Issuer FI is not logged on AND that the
transaction is a Reversal, ZimSwitch will process the reversal as a store
and forward message.
3.1.2
-18-
3.2
Message Time-out
The party initiating the message establishes the amount of time it will wait for
a response to the message it initiated. Consideration should be given to the
following in establishing time-out periods:
The time-out period at the device (ATM/POS/MOBILE/INTERNET) must be at
least long enough to allow for the various processes noted below to complete.
DEVICE ----------> Acquirer FES ----------> ZimSwitch-----------> Issuer
DEVICE<---------- Acquirer FES <---------- ZimSwitch<----------- Issuer
There are some 13 processes to be carried out.
Given the above, ZimSwitch recommends a device terminal time-out period of
50 seconds on NOT ON-US transactions. In practical terms it will probably be
more sensible to set the device time-out the same for all transaction types - be
they ON-US or NOT ON-US.
If timeouts are excessive (greater than a predefined number per time period)
ZimSwitch recommends that the following manual procedure will be followed:
the 3PA operator will Logoff and follow the procedure detailed in *****
if this does not help, the Link will be dropped and re-established.
3.3
System Malfunction
General Malfunction
ZimSwitch may experience repeated problems with a 3PA (e.g. repeated PIN
failures, system problems). Should this happen then the ZimSwitch monitor
personnel will take appropriate action. This will be a learned response to
problems as the nature of the problems is unknown at this time. It is
recommended that a full incident log be kept and that the incident be recorded
by either ZimSwitch or by the 3PA. The incidents must be reviewed
periodically by the ZimSwitch technical committee or operational committee.
-19-
Message Handling
4.1
A Logon is the means by which one party identifies itself to the other for the
purpose of requesting to process further transactions.
Pre-requisites to a successful Logon request are:
ZimSwitch will respond to the Logon request with an action code '860' for
a 1993 3PA (Logon not allowed, keys must first be exchanged). the FI
should not attempt to Logon again
if key exchange is successful, the key will be implemented and the FI will
respond with an approval
In the event that the 1804 request is not responded to in the configured time,
the message initiator will repeat the message twice (maximum) using the 1805
message. If at this stage there is still no response, the message initiator will
drop the Link, re-establish it and attempt to Logon (3PA), implement key
-20-
exchange and then Logon (ZimSwitch). The frequency at which the initiator will
retry this procedure will be predefined and configurable.
If the 3PA Link drops, the 3PA will be logged off by Zimswitch. Under such a
condition, the 3PA will re-establish the link and send the Logon sequence to reinitiate the session.
If the Forwarding Institution Identification Code is not recognised by
ZimSwitch, no 1814 will be sent and the Link will be cleared immediately.
4.2
The purpose of the echo test is for either ZimSwitch or the 3PA to determine
the status of the other party. It may be initiated by either party and the
frequency is unspecified.
The echo test will be initiated using an 1804 request with field 70 (networkmanagement-information-code) set to '301' and the receiving party will
respond with an 1814.
4.3
ZimSwitch will send an 1804 request with field 70 (networkmanagement-information-code) set to '101'
-21-
(DATA)
64 bits of binary zeros
_______|__________
Zone Working Key
_________
(encrypted under
Zone Control Master Key)
| DES ALGORITHM
| (ANSI X3.92)
|
|
|_________________|
|
Encrypted Key
123456789ABCDEF
|
Standard check digits (most significant 24 bits)
4.4
A Logoff is the means by which one party advises the other that it will be
dropping the link.
Logoff messages are to be implemented in both directions on the switch. The
initiating party sends an 1804 request with field 024 (function code) set to
'802' and waits for an 1814 response. When the response is received, the
initiating party may drop the Link. If a response is not received, a maximum of
two 1805 repeats will be attempted. If there is still no response, the party
initiating the Logoff may drop the Link.
If a Logoff is processed while there is an outstanding transaction, the
appropriate reversal processing will come into effect. If the Issuer is logged off
to ZimSwitch then ZimSwitch will respond to any requests received from an
acquirer for that issuer with an action code of 910.
4.5
CUT-OFF PROCESS
Cut-Off is driven by ZimSwitch. At 19h00 ZimSwitch will increment the
settlement-date and will send an 1804 advice to each 3PA. The 3PA will then
register the changed business day.
BUSINESS DAY
The following ZimSwitch value dates apply currently:
PERIOD TRANSACTIONS RECEIVED VALUE DATE
-22-
Saturday
Sunday
Monday
Tuesday
4.6
Thursday
Friday
4.6.1
Balance enquiries are allowed at the Device. The Acquirer 3PA will forward an
1200 request to ZimSwitch. ZimSwitch will forward the request to the Issuer FI
which will reply with an 1210 containing the account balance which ZimSwitch
will forward to the Acquirer.
4.6.2
The Acquirer 3PA will forward an 1200 request to ZimSwitch. ZimSwitch will
forward the request to the Issuer FI which will reply with a 1210 containing the
account balances which ZimSwitch will forward to the Acquirer. If the 1200 is
not responded to by the Issuer FI to Zimswitch in the time configured,
Zimswitch will reply with a 1210 to the Acquirer 3PA.
-23-
If the Acquirer 3PA receives a 1210 response after the transaction has timed
out, if no previous 1210 had been received and if there was no outstanding
1200 request, then the 3PA will initiate reversal/refund processing.
If the 3PA receives another 1210 response and a previous 1210 had been
received and processed, matched by the full range of matching fields, then the
3PA should ignore the 1210.
Note - Refund transactions will be considered to be unique transactions and will
be distinguished by the contents of the processing code.(field 3).
If the 3PA receives a 0210 response after the transaction has timed out, if no
previous 0210 had been received and if there was no outstanding 0200
request, then the 3PA will initiate reversal/refund processing.
If the 3PA receives another 0210 response and a previous 0210 had been
received and processed, matched by the full range of matching fields, then the
3PA should ignore the 0210.
4.7
REVERSAL PROCESSING
DEFINITIONS
The terms cancellation & reversal are used in this section and are clarified
below:
CANCEL
In terms of ZimSwitch certification procedures, once a transaction has
been 'flighted', the Device should not be able to accept a cancellation.
Certification will check for this disablement as a specific test.
REVERSAL
Reversals will immediately be generated by the 3PA, using the same
matching fields (section 2.4) as the original transaction, in the following
circumstances:
Incomplete or timed-out transactions
If a transaction message sent from the 3PA to ZimSwitch has timed-out
and the 3PA has not received a response.
If a transaction response message from the 3PA to the ATM has timed
out.
If the 3PA has indicated to the device that the transaction has been
unsuccessful, and then receives a response from ZimSwitch indicating that the
transaction has been successfully received and updated.
-24-
4.8
LOGOFF
4.8.1
ACQUIRER FI LOGOFF
4.9
FINANCIAL TRANSACTION
4.9.1
CANCELLATION
Not applicable.
4.9.2
If the device times out before an 1210 response is received, the 3PA must
generate an 1420 reversal. The Issuer FI receives the 1420 reversal matching
it with the related 1200 request. If the original 1200 request was declined the
Issuer can record the 1420 as received and return an 1430 response. If the
1200 request was accepted then the Issuer FI should record the 1420, recredit the client account with the transaction amount and return an 1430
response. If an unmatched 1420 reversal arrives at the Issuer FI it should be
recorded and ignored. If the 3PA receives a late 1210 ( after the 1420 request
has been initiated ) response it must be recorded and ignored.
If the Issuer times-out to ZimSwitch or the Issuer FI is logged off, ZimSwitch
will send a Reversal Response to the 3PA and will log the reversal for Store and
Forward to the Issuer FI when contact is re-established.
N.B. Should ZimSwitch receive a late request response it will discard it. The
3PA will send a reversal. The Issuing FI will react to the reversal according to
the original request action taken - e.g. reverse the debit posting if it occurred.
-25-
-26-
Message fields
Please note the following default values for the more common data types.
a
ans
MM
Month, 01 through 12
YY
century.
hh
Hour, 00 through 23
mm
Minute, 00 through 59
ss
second, 00 through 59
LL
LLL
..11
variable length up to 11
track 2 code
Note - all fixed length n elements are presumed to be right justified with
leading zeroes, except for those where examples show left justified with trailing
spaces. All other fixed length data elements are left justified with trailing
spaces.
See page Table 7 of ISO 8583 (1993) for legend of abbreviations used for the
attributes in the following field descriptions.
-27-
5.1
FIELD 1
Format Attribute
b 8
5.2
FIELD 2
Format Attribute
LLVAR
n 19
5.3
FIELD 3
PROCESSING CODE
Field No.
3
Format Attribute
n6
-28-
Description
Goods and services
Cash
Debit Adjustment
Goods & services + cash
PrePaid
Refund
Credit Adjustment - purchase
Credit Adjustment - cash
Balance enquiry
Utility Bill Payment
Device
001 - ATM
Description
01 Cash
18 PrePaid
31 Balance
Device
101 - POS
Description
00 Goods and Services
01 Cash
09 Sale and Cash Back
18 PrePaid
20 Refund
31 Balance enquiry
50 Utility Bill Payment
Device
201 Mobile
Description
18 PrePaid
21 - Credit
31 Balance Enquiry
38 Mini Statement
40 Transfer Inter Acc
42 Transfer 3rd Party
50 Utility Bill Payment
91 Message to Bank
Device
301 Internet
-29-
Description
18 PrePaid
21 - Credit
31 Balance Enquiry
38 Mini Statement
40 Transfer Inter Acc
42 Transfer 3rd Party
50 Utility Bill Payment
91 Message to Bank
3-4
From
00
Account type 10
20
30
Default
Savings account
Cheque account
Credit card
5-6
To
00
N/A
Account type
5.4
FIELD 4
AMOUNT, TRANSACTION
Field No.
4
Format Attribute
n 12
-30-
5.5
FIELD 7
Format Attribute
11
n 6
5.7
Field No.
12
Format
Attribute
YYMMDDhhmmss
n 12
-31-
Contains the local date time at which the transaction takes place
at the point of the card acceptor location.
All parties should ensure that this field's integrity is maintained
and that it is logged with each message within the network.
CHECKED BY SWITCH - PRESENT
5.8
5.9
Format Attribute
YYMM
n4
Contains the year and month after which the card expires.
Generally cards only have effective or expiry dates if there is a
specific contract in place for their use such as that between a
Credit card issuer and their clients. This field has been
requested by ZIMSWITCH.
Responses should return the value contained in the original
request.
CHECKED BY SWITCH PRESENT
Format
Attribute
YYMMDD
n 6
Contains the year, month and day that funds will be transferred
between acquirer and card issuer.
This field is set up by ZIMSWITCH for all requests before
forwarding the messages to the issuer. It will contain the switch
settlement date that applies to the transaction. Issuers should
return the value received in all related responses.
-32-
5.11
FIELD 19
Field No.
Format Attribute
19
5.12
FIELD 22
n 3
Field No.
Format Attriibute
22
an 12
-33-
1 Manual, no terminal
2 Magnetic stripe read (ATM & POS)
1 PIN (ATM & POS)
0 None
1 Capture
2 On premises of card acceptor, unattended
(ATM)
3 Off premises of card acceptor, attended
(POS)
0 Cardholder present (ATM & POS)
1 Card present (ATM & POS)
1 Manual, no te rminal
2 Magnetic stripe read ATM & POS)
1 PIN (ATM & POS)
5 Manual, signature verification (POS)
3 Authorising agent (ATM & POS)
0 Unknown (POS)
1 None (ATM &/or POS)
0 Unknown (POS)
1 None (POS)
2 Printing (ATM & POS)
N.B.****** update this field for card not present, airtime, mobile purchases
see ISO 8583 appendix A.8
5.13
FIELD 23
Field No.
23
Format Attribute
n
5.14
FIELD 24
FUNCTION CODE
Field No.
24
Format Attribute
n 3
-34-
FIELD 26
Field No.
Format Attribute
26
n 4
Code classifying the type of business being done by the card acceptor for
this transaction.
Please refer to the ISO 8583 1993 edition specification section A.4 for
the code to be inserted in this field.
ZIMSWITCH will not check the value, but will pass on the value to the
Issuer.
5.16
FIELD 28
DATE, RECONCILIATION
Field No.
28
Format
Attribute
YYMMDD
n6
Contains the year, month and day that funds will be reconciled between
acquirer and card issuer.
This field is set up by ZIMSWITCH for all requests before forwarding the
messages to the issuer. It will contain the switch reconciliation (same
as settlement date in edition 87) date that applies to the transaction.
Issuers should return the value received in all related responses.
Responses should return the value contained in the original request.
N.B. This field may also be referred to as current Business Day.
-35-
5.17
Format Attribute
LLVAR
n..11
5.18
FIELD 33
Field No.
33
Format Attribute
LLVAR
n..11
-36-
5.19
FIELD 35
Field No.
35
TRACK 2 DATA
Format Attribute
LLVAR
z 37
FIELD 37
Field No.
37
Format Attribute
anp 12
5.21
FIELD 39
Field No.
39
ACTION CODE
Format Attribute
n3
-37-
Approved
Do not honour
Expired card
Restricted card
PIN tries exceeded
Refer to card issuer
Invalid card number
Invalid account
Requested function not supported
Not sufficient funds
Incorrect PIN Issuer
Transaction not permitted to terminal
Exceeds withdrawal amount limit
Exceeds withdrawal frequency limit
Invalid PIN block
Do not honour
Expired Card
Allowable PIN tries exceeded
Accepted - applicable to
reversal - 14XX
Accepted - applicable to network
management - 18XX
Nat.Use - wait for key exchange
Nat.Use - problem in key exchange
message
National.Use (Issuer can't do key exchange)
Invalid transaction
Format error e.g. missing Bitmap
Card issuer unavailable
No such Issuer
Default for failed transaction,
really system malfunction
Nat. Use - default for tran.
not processed
RETURNED BY
ACTN
Issuer
Issuer
Issuer
Issuer
Issuer
Issuer
Issuer
Issuer
Issuer
Issuer
Decline
Issuer
Issuer
Issuer
Zimswitch/Issuer
Issuer
Issuer
Issuer
Issuer
Issuer
Zimswitch/Issuer
Accept
Decline
Decline
Decline
Decline
Decline
Decline
Decline
Decline
Decline
(POS)
(POS & ATM)
(ATM)
(POS)
Decline
Decline
Decline
Decline
Capture
Capture (ATM)
Capture
Accept
Accept
Zimswitch
Issuer
Accept
Accept
Issuer
Accept
Zimswithc/Issuer
Zimswitch
Zimswitch
Zimswitch
Zimswitch/Issuer
Decline
Decline
Decline
Decline
Decline
Issuer
Decline
93 Resp
Code
000
-38-
87 Resp
Code
0
CTL
Approved
APPROVED_CHANGED_ACC
APPROVED_PARTIAL_CHANGED_ACC
APPROVED_UPDATE_ICC
FILE_ACTION_SUCCESSFUL
REV_ACCEPTED
RECON_IN_BALANCE
ADMIN_ACCEPTED
FEE_ACCEPTED
NWRK_MNG_ACCEPTED
REFER_TO_CI
005
006
007
300
400
500
600
700
800
107
0
0
0
0
0
0
0
0
0
1
REFER_TO_CI_SPECIAL
INVALID_MERCHANT
DO_NOT_HONOUR
DO_NOT_HONOUR
SPECIAL_CONDITIONS_PICK_UP
HONOUR_WITH_ID
REQUEST_IN_PROGRESS
APPROVED_PARTIAL
APPROVED_VIP
INVALID_TRANSACTION
INVALID_AMOUNT
INVALID_CARD_NUMBER
108
109
100
100
207
001
923
002
003
902
110
111
APPROVED_UPDATE_TRACK_3
004
REENTER_TRANSACTION
903
UNACCEPTABLE_FEE
FILE_ACTION_NOT_SUPORTED
ADMIN_ORIG_TRAN_NOT_FOUND
113
301
601
FILE_FIELD_EDIT_ERROR
FILE_LOCKED_OUT
FILE_ACTION_NOT_SUCCESSFUL
FORMAT_ERROR
CARD_ISSUER_UNAVAILABLE
304
305
306
904
912
EXPIRED_CARD_PICK_UP
SUSPECTED_FRAUD_PICK_UP
CONTACT_ACQ_PICK_UP
RESTRICTED_CARD_PICK_UP
CALL_ACQUIRER_SECURITY_PICK_UP
PIN_TRIES_EXCEEDED
PIN_TRIES_EXCEEDED_PICK_UP
FUNCTION_NOT_SUPPORTED
LOST_CARD_PICK_UP
NO_ACCOUNT_OF_REQUESTED_TYPE
STOLEN_CARD_PICK_UP
NO_ACCOUNT_OF_REQUESTED_TYPE
NO_ACCOUNT_OF_REQUESTED_TYPE
201
202
203
204
205
106
206
115
208
114
209
114
114
NOT_SUFFICIENT_FUNDS
116
2
3
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
51
-39-
Approved
Approved
Approved
Approved
Approved
Approved
Approved
Approved
Approved
Refer to issuer
Refer to card issuer, special
condition
Invalid merchant
Do not honor
Error
pick us special
Honour with identification
Request in progress
Approved for partial amount
VIP Approval
Invalid transaction
Invalid amount
Card number does not exist
No such issuer
Approved, update track 3
Customer cancellation
Customer dispute
Re-enter transaction
Invalid response
No action taken (no match)
Suspected malfunction
Unacceptable transaction fee
File upd not supported by rcvr
Unable to locate record
Duplicate file update record
File update field edit error
File temporarily unavailable
File update not successful
Format error
Issuer sign-off
Completed partially
Expired card
Suspected fraud
Card acceptor contact acquirer
Restricted card
Card acceptor call acquirer
Allowable PIN tries exceeded
No credit account
Function not supported
Pick up card (lost card)
No universal account
Pick up card (stolen card)
No investment account
Account closed
Identification required
Not sufficient funds
NO_ACCOUNT_OF_REQUESTED_TYPE
NO_ACCOUNT_OF_REQUESTED_TYPE
EXPIRED_CARD
INCORRECT_PIN
NO_CARD_RECORD
TRAN_NOT_PERMITTED_CARDHOLDER
TRAN_NOT_PERMITTED_TERMINAL
SUSPECTED_FRAUD
CONTACT_ACQUIRER
EXCEEDS_WITHDRAWAL_AMNT_LIMIT
RESTRICTED_CARD
SECURITY_VIOLATION
114
114
101
117
118
119
120
102
103
121
104
122
EXCEEDS_WITHDRAWAL_FREQ_LIMIT
123
DO_NOT_HONOUR_PICK_UP
200
PIN_TRIES_EXCEEDED
106
CARD_NOT_EFFECTIVE
125
CUTOVER_OR_CHKPT_ERROR
915
CUTOVER_IN_PROGRESS
ISSUER_OR_SWITCH_INOPERATIVE
CARD_ISSUER_UNAVAILABLE
ROUTING_ERROR
VIOLATION_OF_LAW
DUPLICATE_TRANSMISSION
RECON_OUT_OF_BALANCE
SYSTEM_MALFUNCTION
MAC_INCORRECT
MAC_KEY_SYNC_ERROR
CARD_ISSUER_SIGNED_OFF
CARD_ISSUER_TIMED_OUT
CUTOVER_OR_CHKPT_ERROR
NO_COMMS_KEY
ENCR_KEY_SYNC_ERROR
SECURITY_ERROR_RETRY
SECURITY_ERROR_NO_ACTION
MSG_NR_OUT_OF_SEQ
906
907
912
908
124
913
501
909
916
917
910
911
915
918
919
920
921
922
5.22
Format Attribute
-40-
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
75
76
77
80
81
82
83
84
85
86
88
89
90
91
91
92
93
94
95
96
XA
XD
No checking account
No savings account
Expired card
Incorrect PIN
No card record
Trxn not permitted to card
Trxn not permitted to card
Suspected fraud
Card acceptor contact acquirer
Exceeds withdrawal limit
Restricted card
Security violation
Original amount incorrect
Activity count exceeded
Card acceptor call acquirer
Card pick up at ATM
Response received too late
Too many wrong PIN tries
Previous message not found
Data does not match original m
Invalid date
Cryptographic error in PIN
Incorrect CVV
Unable to verify PIN
Invld authorization life cycle
No reason to decline
PIN validation not possible
Cryptographic failure
Authentication failure
Cutoff is in process
Issuer or switch inoperative
Issuer or switch inoperative
No routing path
Violation of law
Duplicate transmission
Reconcile error
System malfunction
Forward to issuer
Forward to issuer
43
n 3
5.23
Format Attribute
ans 8
FIELD 43
Field No.
43
Format Attribute
LLVAR
ans..99
Format Attribute
48
LLLVAR ans..999
5.26
FIELD 49
Field No.
49
-42-
The inclusion of this field at this stage is not essential, but there
is a possibility that transactions will be switched to foreign
switches in the future, e.g. SASWITCH in South Africa.
ISO 4217 provides currency code values.
5.27
FIELD 52
Field No.
52
FIELD 54
ADDITIONAL AMOUNTS
Field No.
Format Attribute
54
LLLVAR ans..120
-43-
account type 2
as defined in positions 3/4 or 5/6 of Processing Code
amount type 2
01
currency code 3
716 if Zimbabwe $
sign
1
- or blank ( - if balance negative )
value
12
account ledger balance
- - -- - - - - - - - -- - - - - - - - - - -- - - - - - - - - account type 2
as defined in positions 3/4 or 5/ 6 of Processing Code
amount type 2
02 (see standard appendix A.2)
currency code 3
716 if Zimbabwe $
sign
1
- or blank ( - if balance negative )
value
12
account available balance
-----------------------------------------account type 2
as defined in positions 3/4or 5/6 of Processing Code
amount type 2
40
currency code 3
716 if Zimbabwe $
sign
1
- or blank ( - if balance negative )
value
12
amount cash (POS - value of cash with purchase)
Zeroes are acceptable in this field. One set or all sets may be present.
5.29
FIELD 56
Field No.
56
Format Attribute
LLVAR
n..35
msg
field
field
field
type
11
12
32
n4
Original message type identifier
n 6
Original system trace audit number
n 12
Original date and time, local transaction
n..11(LLVAR)Original acquiring institution identification code- length
Original acquiring institution identification code data
5.30
FIELD 59
TRANSPORT DATA
Field No.
Format Attribute
59
LLLVAR ans..999
Comment
Key Type
n 2
04-05
Key Direction
n 2
06-07
PIN AWK
PIN AWK cd
PIN IWK
PIN IWK cd
MAC WK
MAC WK cd
an-16
an-6
an-16
an-6
an-16
an-6
08-23
24-29
30-45
46-51
52-67
68-73
00 = PIN key
01 = PIN & MAC key
01 = Inbound key only
02 = Outbound key only
03 = Both In& Outbound keys
Hex chars 0...9 and A...F
Hex chars 0...9 and A...F
Hex chars 0...9 and A...F
Hex chars 0...9 and A...F
Hex chars 0...9 and A...F
Hex chars 0...9 and A...F
5.31
Position
Comment
Key Type
04-999
Indecipherable message
ans..999
Format Attribute
60
LLLVAR ans..999
-45-
Pos 4-6
Device type
001
101
201
301
401
ATM
POS
Mobile phone
Internet
VRU
5.32
Format Attribute
61
LLLVAR ans..999
Contains a TAG that the Switch can use to verify if the message
was authorised via the eDirectory Contents to be advised.
CHECKED BY SWITCH - FOR PRESENCE AND VALIDITY
Field No.
93
Format Attribute
LLVAR
n..11
Format Attribute
LLVAR
n..11
Note :
5.35
FIELD 100
Field No.
100
n..11
5.36
FIELD 102
Field No.
100
ACCOUNT INDENTIFICATION 1
Format Attribute
LLVAR
an..28
5.37
FIELD 103
Field No.
100
ACCOUNT IDENTIFICATION 2
Format Attribute
LLVAR
an..28
5.38
FIELD 128
-47-
Field No.
128
Format Attribute
b 8
Contains the code used to validate the source and text of the
message between the sender and the receiver.
-48-
Message Layouts
6.1
6.1.1
-49-
6.1.2
6.1.3
M/O
COMMENTS
M
M (for 1987 Messages)
M
M
M
M
M
M
M
O Key Exchange data or
indecipherable message
Transaction destination institution
M
ID code
Transaction originator institution
M
ID code
Message Authentication Code
M
M/O COMMENTS
M
M (for 1987 messages)
ME
ME
ME
ME
ME
ME
Transaction destination
institution ID code
Transaction originator
institution ID code
Message Authentication Code
-50-
ME
M
16 Key Exchange data
/indecipherable message
ME
ME
M
6.1.4
1200/1201
FIELD N
001
002
003
004
007
011
012
014
015
019
022
024
026
6.1.5
M/O COMMENTS
M
07
M
M
M (for 1987 messages)
M
Matching field
M
Matching field
M
M
M
M
M
M See ISO 8583
section A.4
M
M Matching field
M
O
M
M
M
M
028
032
033
035
037
041
043
049
052
054
Date, Reconciliation
Acquiring Institution Identification Code
Forwarding Institution Identification Code
Track 2 Data
Retrieval reference number
Card Acceptor Terminal ID
Card Acceptor Name/Location
Transaction Currency Code
PIN Data M
Amounts, Additional
060
100
128
19
M
Only required if
Cash Back (POS)
001 - ATM, 101 POS
Date, Reconciliation
-51-
M/O COMMENTS
M
16
27
M
M for '87 messages
ME Matching field
ME Matching field
ME
ME
ME
ME
ME
ME See ISO 8583
section A.4
ME
032
033
035
037
039
043
041
049
054
060
100
102
103
128
6.1.6
ME
M
OE
ME
M
M
ME
ME
M
ME
ME
M
O
M
060
100
102
103
128
-52-
M/O COMMENTS
M
07
03
ME
M
ME
ME
ME
ME
ME
M
ME
ME
ME
O
ME
ME
ME
ME
ME
O Only required if
Cash Back(POS)
M Orig. data
for matching
M
ME
M
O not this phase
M
6.1.7
-53-
M/O COMMENTS
M
16
16
M
ME
ME
ME
ME
ME
ME
ME
ME
ME
ME
M
OE
ME
M
ME
ME
ME no bals for rev.
ME
ME
ME
M
O not this phase
M
Field
001
002
003
004
007
011
012
014
015
019
022
024
026
028
032
033
035
037
039
041
043
049
052
054
056
059
060
093
094
100
102
103
128
X1 -
Name
1200/1 1210
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
1420/1 1430
1804/5 1814
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X1
X1
X
X
X
X
X
X
X
X
X
X
X
X
X
X
Used in Key Exchange messages - contains the encrypted Zone Working Key
indecipherable messages returned to sender by switch
-54-
and Used in
Appendices
Appendix A Glossary
ATM
FI
Financial Institution
TCP/IP
IWK
PIN
AWK
MAC
-55-