Posts: 1
Registered: ‎12-20-2013

AVS 'Brute Force' Detection

Hello Authorize.Net,


My client wants me to keep track of how many times a user tries to submit an order that fails AVS, and stop letting the user attempt to submit the order after a few failures.


I'm wondering if Authorize.Net does anything similar to this?  Does Authorize.Net protect against users trying to guess billing zip codes, etc?


Is this an issue I should even be concerned about?




Posts: 4,525
Registered: ‎03-08-2010

Re: AVS 'Brute Force' Detection

The only thing they have is the x_duplicate_window, but that use the zip code as one of the check, so no, you have to do your own checking.