Card Issuing and Acquiring in banking and payments

1. Which of the following statements best apply to The Magnetic Strip on the rear of Payment Cards? (Check all that apply)

The Magnetic Strip on the rear of the Card may also be used by card companies to hold discretionary Data

The Magnetic Strip on the rear of the Card is globally accepted and implemented as a standard by Global Card Issuers

The Magnetic Strip was first Introduced by the American Banking Association (ABA)

The Magnetic Strip on the rear of the Card holds the cardholder’s Account # and encrypted PIN

2. What does the term “Third-Party Processing” refer to?

All the Providers acting under contract to the merchant acquirer

The exchange Data or funds during a function by both the Acquiring Bank and the Issuing Bank

All the Service Providers acting under the instruction of Banks to provide services to the Card Schemes

The Processing of Transactions by service providers acting under contract to card Issuers or Acquirers

3. How does the tiny chip that is embedded in “Chip n Pin” cards prevent fraudulent transactions?

The Chip Card standards only apply to Visa and Mastercard, so it won’t be active until implemented by EuroPay, Amex and Diners

The Chip allows domestic-only issued cards to be used internationally, thus limiting card fraud

The Chip prevents customers from using an incorrect password/pin combination at a payment terminal

The Chip is used to generate a one-time code with every transaction making it virtually impossible to create counterfeit cards for use in stores

4. EMV liability shift – Which principle would apply where a card used in a card-present, counterfeit payment fraud was fully EMV Chip compliant

Neither the card issuer or the merchant will be found at fault, and the customer will be liable to pay

Counterfeit fraud liability shifts automatically to the party with the lesser technology

Counterfeit fraud liability is shared 50/50 between the parties that have invested in chip technology

Both the card issuer and the merchant will be found at fault

5. EMV Compliance testing mandates two two levels of testing

False. EMV compliance does not specify testing (Testing is mandated by the Individual Schemes)

True. EMV Level 1 testing, which covers physical, electrical and transport level interfaces

False. There are 4 EMV compliance testing levels, namely Physical interfaces, Transport, Payments and Processing

True. EMV Level 2 testing, which covers payment application selection and credit financial transaction processing

6. An Interchange Network is best described as

The system of fees as well as other monetary and non-monetary charges related to Transaction activities

The system of laws that Card Schemes can enforce to ensure Banks act in accordance with the law

The domestic and international network, systems and platforms operated by the Card Schemes to handle Payments

Any financial Transaction originating from a telephone or electronic Terminal, a computer or magnetic tape

7. In fraud detection, a “false positive” occurs when

something innocent is wrongly deemed suspicious

All of the Above

a cardholder accidentally trips the card issuer’s fraud detection system

systems that work by detecting activities and patterns associated with fraud, don’t work perfectly

8. The Interchange fee is

Also called the discount rate or swipe fee

All of the Above

Usually (but not always) higher for online purchases than for in-person purchases, because in the latter, the card is physically present and available for inspection

The sum paid by merchants to the credit card processor as a fee for accepting credit cards

9. Which statements apply to the the Card Verification Code Number (CVC), the 3 or 4 digit usually found on the back of EMV cards?

Used for validating card information during a CNP (Card Not Present) authorization process

Also known as a CVV Number (“Card Verification Value”)

Not embossed or printed on any receipts and therefore unlikely to be known by anyone other than the card owner

A unique value calculated from the card Data encoded on the magnetic stripe of a Card

10. What is meant by ‘Card authentication’

The process of validating whether a card used in a transaction is the genuine card issued by the issuer

The process of reserving or blocking funds for a payment

A transaction that is challenged by a cardholder or card issuing bank and is sent back through interchange to the merchant bank for resolution.

The process of confirming the validity of a customer’s credit card by checking with the company that issued the card.

11. What does a Q1 payment error usually indicate?

Unable to go online

Card authentication failed

Revocation of all authorizations order

Forward to Issuer

12. In fraud detection, a “false positive” occurs when

Systems that work by detecting activities and patterns associated with fraud, don’t work perfectly

Something innocent is wrongly deemed suspicious

All of the Above

A cardholder accidentally trips the card issuer’s fraud detection system

13. Which statements best describe a card Affinity Partner?

A business that has lent their Brand or Name to card issuers in order to draw consumers to use their cards

Typical affinity partners are sports teams,religious organisations, charities, or universities

Get paid a fee or a percentage of the balance for each branded card that is issued

None of the Above

14. Who is the “Issuer” (or “Issuing Institution”), when used in reference to Card Schemes (EMV), Interchange Networks and Payment Systems

An organization that also issues a personal identification number (PIN), used in conjunction with a card

The Issuer is the financial institution that issues credit cards to consumers on behalf of the card networks

A and B

Issuers retain full authority over the use of the card by the consumer

15. What is the main difference between a Payment Gateway and a Payment Processor?

Payment Gateways act as ‘switches’ while Payment processors act as ‘routers’ routing transactions to and from the Issuing Bank.

The Card Schemes are Payment Gateways, and Banks (both Issuing and acquiring), are Payment Processors

Payment processors transmit Transaction information to Acquiring Banks and pass responses from Issuing Banks while Payment gateways enable Merchants to receive debit or Credit Card payments online by providing a connection to an Acquiring Bank

A Payment Gateway is primarily used to honour transactions

16. What is the acronym MIGs an abbreviation of?

MasterCard Internet Gateway Service – MasterCard’s proprietary payment gateway system that allows Banks to accept card not present (CNP) Transactions

Master Internet Gateway System – A centralised payment gateway for all Internet Payment Requests

Maximum Interest Granted – The method used by EMV members to calculate Credit Card interest on behalf of the banks

It’s a trick question, because its a type of Russian Jet that has nothing to do with card issuing or acquiring

17. How is the Bank Identification Number (BIN) derived?

The last 4 digits on the card that represents the Issuing Bank

The 16-digit number assigned by the Scheme Issuer and used to identify a member or processor for authorization clearing or settlement processing

The 6-digit number that identifies whether the Card Scheme which issued the Card (eg. MasterCard, Visa etc).

The initial sequence of 4 to 6 numbers that is used to identify the card’s issuing bank or other financial institution

18. What is usually meant by the term “Card acceptance device”?

It refers to a Mobile Phone or Internet shopping cart

Refers only to ATM’s or a POS devices, that actually accept physical cards

It refers to any bank issued electronic payment devices that carrying the Acquiring Banks branding

Refers to any device capable of reading and/or processing a magnetic stripe or chip on a card for the purpose of performing a service such as obtaining an authorisation or processing a payment

19. An acquirer will typically hold a portion of the merchant’s funds in a merchant account reserve. Why?

This way, acquirers insure themselves against loss in the event the merchant declares bankruptcy

This way, acquirers insulate themselves against loss in the event that a merchant experiences excessive chargebacks

This way, Issuers guarantee that the merchant acquirer will always meet minimum cash reserve requirements

This way, acquirers insulate themselves against loss in the event of merchant fraud

20. Issuer Authentication is…

A process whereby the Issuer of the card confirms the identity of the cardholder

A process whereby the Issuer of the card ensures the integrity of the authorization response

A process where the Issuer of the card officially authorises a cardholder to perform an action

All of the Above

21. In card terms, the Processing date is

The date on which the transaction is processed by the acquiring bank.

The date on which the transaction is opened by the Interchange

The date on which the transaction is recieved by the Issuing bank.

The date on which the transaction is posted by the card scheme provider

22. In Card Issuer terms, the post date is

The date upon which cardholders’ purchases are posted (or recognized) on the books of the Merchant acquirer Bank

The date on which the cardholders monthly statement is sent through the post

The date upon which cardholders’ purchases are posted (or recognized) on the books of their Card issuer Bank

The date upon which cardholders’ purchases appear on the cardholders statement

23. Which statement best describes the term ‘PCI Compliance‘, when used in connection with “Card Schemes”, “Interchange” or “Payment Systems”

The procedure a Scheme member may use to resolve a dispute between members when no chargeback reason code applies

The rules mandated by credit card companies to help ensure the security of card transactions in the payments industry

The laws the Regulator applies to ensure Banks act in accordance with the law

The fines the Acquiring Bank must pay to the issuing bank in the event of fraud

24. Which of the following statements about the term “EMV” are correct?

it is also used to refer to the microchip-based technology standard designed to reduce fraud at the point-of-sale

Stands for “Environmental Management Value” for Cards Systems

Stands for ‘EuroPay, MasterCard Visa’

Is also used also used to refer to the proprietary standard of embedded chips cards, which supports contactless payments

25. A basic chip terminal device would protect merchants from liability when

The merchant fails to check the customers identity document or drivers license

The type of fraud in play is the use of a counterfeit or cloned card

The type of fraud involves a mobile phone to verify the transaction (using an OTP)

None of the above

26. Choose the option that best describes the role of an Acquirer (or an Acquiring institution), in a typical card scheme

The Bank who works with the Issuer to print the cards

The Bank that provides all the requisite facilties to the merchants enabling them to accept Card Payments

The merchant who holds an account with the Bank and each day deposits the value of the day’s credit card sales

The Bank who buys (acquires) the merchant’s sales slips and credit the tickets’ value to the merchant’s account

27. What typically happens when a cardholder requests a chargeback?

The Acquiring Merchant Bank may withhold excessive chargeback claims for a period of 30 days, at its own discretion

The acquiring bank contacts the card’s processing network to send payment from the merchant’s account at the merchant bank to the cardholder’s account at the issuing bank.

The issuing Bank forcibly reverses the transaction in question, withdrawing the money from the Acquiring Bank and returning it to the cardholder

The chargeback process can be initiated by either the merchant or the cardholder’s issuing bank.

28. Which of the following terms best apply to the term “Merchant Service Fee”?

The fee for allowing the acquirer to accept payment from an issuing bank when the two may or may not be the same

The fee charged by the Merchant Acquirer Bank to their sponsored merchant for the acceptance of a card payment

The fee charged by the Acquirer that covers the costs of interchange and scheme fees, as well as other services provided by the Merchant Acquirer

The fee mandated by the Card Scheme Networks as a recovery fee for the cost of Interchange

29. How does EMV (Chip and Pin) Technology benefit Card Issuers?

None of the Above

EMV ensures broader acceptance of foreign cards that are already EMV enabled

EMV reduces the risk of counterfeit card fraud, lost or stolen card fraud (with chip and PIN),

EMV reduces card skimming at the POS

30. What is a Chargeback Transaction?

A term that is used interchangeably with ‘Visa payWave’

A Transaction that is challenged by a cardholder or card issuing Bank and is sent back through the interchange to the merchant Bank for resolution

Any financial Transaction originating from a telephone or electronic Terminal, or from a computer or magnetic tape

An amount advanced by a Bank teller (or ATM) to a Bankcard holder against the cardholder’s line of credit

31. An Agent Bank acting on behalf of the Card issuer is…

None of the above. They’re all incorrect

A Bank (or entity) that does not finance the card transactions

A bank that issues a credit card on behalf of the primary issuer

An entity appointed by the Card Issuer to perform Cardholder verification such as the 3-D Secure protocol and Token Service

32. what do we mean when we refer to “Card Schemes, Interchange and Payment Systems Interoperability”?

The systems and networks that allow some ATM’s to accept and read all chip cards in each country

The systems and networks that allow branded ATM’s and POS terminals to process transactions quickly and effectively

The systems and network of Internet Gateways that work together to accept Card-Not-Present payments on behalf of Amazon and Paypal

The systems and networks that allow card acceptance devices and Terminals to accept and read all chip cards that fully comply with all Scheme Standards

33. What usually happens when a Card Block Request is sent out

Instructions are sent to the card by the Issuer which prevent further use of the card

Instructions are sent to the card by the Issuer which shut down all proprietary and non-proprietary applications that reside on the card

Most frequently accompanied the an R3 code (Revocation of all authorizations order)

None of the Above

34. The Card acquirer is

Both A and B

The financial institution that processes and settles a merchant’s daily card transactions, and in turn settles those transactions with the card issuer/association

Neither A nor B

The financial institution that maintains a merchant’s account in order to accept credit cards

35. Which statement(s) best describe the term ‘Settlement‘ when discussing Payments

Processing of Transactions by service providers acting under contract to card Issuers or Acquirers

Settlement occurs when the acquiring institution and the Issuer exchange data or funds

None of the Above

A process that describes how a sales Transaction value moves 1) from the Merchant 2) to the Acquiring Bank and finally to the Issuer or Settlement Bank

36. EMV liability shift – Which statements in a Card-present counterfeit fraud, at a merchant POS, would apply?

The card issuer will be liable if the card was NOT a chip card, since it’s the issuer’s responsibility to issue chip cards

If both the merchant and the issuer have implemented EMV, the liability remains with the Acquirer

If a chip card was used, and the Merchant didn’t process it with an EMV-capable terminal, then the liability shifts to the Merchant.

If both the merchant and the issuer have implemented EMV, the liability remains with the issuer

37. Which statements about EMV (in cards and payments) are correct? (Select all that apply)

Europay, MasterCard, Visa, which make up the EMV Consortium

The specifications administered by the EMV Consortium using international standards to champion global interoperability for payment cards.

The Specifications described by the EMV Consortium that include on contact chip, contactless chip, common payment application (CPA), card personalization, and tokenization

The standards set out by the EMV consortium that includes card and terminal evaluation, security evaluation, and management of interoperability issues