The ATTEMPT value indicates that the merchant successfully initiated the cardholder authentication process but that the authentication could not be completed. However, an authentication token was generated.
ATTEMPT, in the following cases:- The issuer does not participate in EMV 3-D Secure,
- The card is not enrolled.
- The Access Control Server (ACS) of the card-issuing bank is not responding or cannot be reached.
In these three cases, if the issuer supports it, the card directory server (Directory Server) takes over, generates the authentication proof (CAVV or AAV, for example), and returns the authentication status ATTEMPT (or “A”).
In addition, Mastercard provides issuers with a risk-based service called “Smart Authentication Stand-In.” This service determines the risk level of transactions.
If the risk level of a transaction is high, the service returns an ATTEMPT authentication status.
The service also allows issuers to configure risk rules based on various criteria (for example, the purchase amount, the transaction score, or the MCC code used).
If a transaction does not meet the conditions of these rules, the service returns an ATTEMPT authentication status.