TERM

Address Verification Service (AVS)

How It Works & Common AVS Codes

Click on the bookmark to view chapters of this webpage
Click on the bookmark to view chapters of this webpage
Bookmarks

A common indicator of online credit card fraud is when a shopper uses a billing address that’s different from the address linked to the credit card at the owner’s bank. This is often a sign that the shopper is using stolen or fake credit card information.

That’s why most major credit card companies use an address verification service system to weed out online fraudsters by catching mismatches between given and registered billing addresses.

So exactly what is an address verification service? How does it work? Why do marketplaces and banks use this system? And what limitations do these institutions have to consider when using AVS? The answers to these questions will be discussed below.

Access the State of Fraud and AML 2022 Report Now

What is an Address Verification Service (AVS)?

An address verification service, or AVS, is a system provided by major credit card companies to combat card-not-present (CNP) fraud. It involves checking if an online shopper’s billing address matches the address tied to their credit card that’s on file with the card owner’s financial institution.

AVS is only available with certain credit card providers, and only in certain countries. Currently, major credit card companies like Visa, Mastercard, American Express, and Discover offer AVS services in the US, Canada, the UK, Australia, and New Zealand. It’s important to note that AVS only works within the country where the cardholder lives, and cannot be used to verify foreign credit cards.

Why Address Verification Services Matters

AVS is a tool for detecting discrepancies between what an online shopper claims their billing address is and the address officially registered with the credit card they’re using. If there is a mismatch, it may indicate that the shopper is using stolen or fake credit card information.

This system protects both customers and merchants in different ways.

Customers

The AVS allows merchants and banks to detect and block low-effort attempts to use customers’ stolen credit card details. This saves customers from having fraudulent transactions made in their name, and from having to file chargebacks to recover their money.

Merchants

The AVS helps merchants and banks detect and block fraudulent transactions before they go through. This, in turn, helps them avoid dealing with chargebacks that cost them both money and the trust of financial partners.

At the very least, the AVS allows a merchant or bank to check the IP address a customer is using to access the institution’s website against the customer’s given billing address. A large discrepancy in distance between the two addresses might point to fraud or other financial crime.

How Do Address Verification Services Work?

AVS systems works by comparing an online shopper’s billing address with the address registered to their credit card at the card owner’s financial institution.

In some cases, the credit card provider will automatically decline a transaction if the AVS check fails. Otherwise, it lets the merchant know the result of the check, and then the merchant has to decide what to do with the transaction in light of this information.

An address verification service check works like this:

  1. An online shopper adds some items to their virtual cart on an online marketplace, then proceeds to checkout.
  2. As part of checkout, the shopper is asked to submit their credit card details, including a billing address.
  3. The merchant requests an AVS check from the credit card provider.
  4. The credit card provider compares the submitted billing address against the legitimate cardholder’s address as it’s registered at their financial institution.
  5. The credit card provider either rejects the transaction if the check fails, or returns a code to the merchant based on how close the match is.
  6. The merchant – either manually or via a machine learning algorithm – can choose to go through with the transaction, reject it, or put it on hold for further investigation.

During the check, the cardholder will receive an authorization charge on their account, and a hold will be put on the funds required for the payment. This is usually cleared up within 5 to 7 business days by the cardholder’s financial institution. However, it can sometimes last up to 30 days, and require cardholder action to investigate and resolve the issue.

What Are the Common AVS Codes Used?

AVS systems use single-letter codes to denote how close a match there is between an online shopper’s billing address and their credit card’s actual registered address. Since each credit card company operates its own AVS, the specific codes used are not universal; however, many companies use the same generic system - and in some cases, the same codes.

Below, we outline the AVS response codes for the main credit card providers. Keep in mind that when dealing with another credit card provider, these codes may change slightly.

AVS Code

Visa

Mastercard

Discovery

American Express

A

Address matches, ZIP does not

Address matches, ZIP does not

Address matches, ZIP does not

Address matches, ZIP does not

B

Address matches, but ZIP not verified

N/A

N/A

N/A

C

Address and ZIP not verified

N/A

N/A

N/A

D

Address and ZIP match (International only)

N/A

N/A

N/A

E

AVS data is invalid or AVS is not allowed for this card type

N/A

N/A

N/A

F

Address and postal code match (UK only)

N/A

N/A

Address matches, card member name does not match

G

Non-U.S. issuing bank does not support AVS

N/A

N/A

N/A

I

Address information not verified for international transaction

N/A

N/A

N/A

K

N/A

N/A

N/A

Card member name matches

L

N/A

N/A

N/A

Card member name and ZIP match

M

Address and postal code match (International only)

N/A

N/A

Card member name, address, and ZIP code match

N

Address and ZIP code do not match

Address and ZIP code do not match

Address and ZIP code do not match

Address and ZIP code do not match

O

N/A

N/A

N/A

Card member name and address match

P

ZIP code matches, address unverifiable due to incompatible formats (International only)

N/A

N/A

N/A

R

System unavailable, retry

System unavailable, retry

System unavailable, retry

System unavailable, retry

S

AVS not supported

AVS not supported

AVS not supported

AVS not supported

T

N/A

N/A

9-Digit ZIP matches, address does not

N/A

U

Address information unavailable.


Returned if the U.S. bank does not support non-U.S. AVS or if the AVS in a U.S. bank is not functioning properly.

Address information unavailable.

Address information unavailable.

Address information unavailable.

W

9-Digit ZIP matches, address does not

9-Digit ZIP matches, address does not

9-Digital ZIP matches, address does not

Card member name, ZIP, and address do NOT match

X

9-Digit ZIP and address match

9-Digit ZIP and address match

9-Digit ZIP and address match

N/A

Y

5-Digit ZIP and address match

5-Digit ZIP and address match

5-Digit ZIP and address match

5-Digit ZIP and address match

Z

5-Digit ZIP matches, address does not

5-Digit ZIP matches, address does not

5-Digit ZIP matches, address does not

5-Digit ZIP matches, address does not

Limitations of Using an Address Verification Service (AVS)

As helpful as the AVS can be in detecting fraudulent purchases and chargebacks, it’s by no means a foolproof system. There are situations where it can offer little to no protection, such as when:

  • A credit card is used in a country that doesn’t support AVS
  • A credit card is issued by a provider that doesn’t support AVS
  • A fraudster can find or steal a legitimate cardholder’s registered address

In addition, there are times when the AVS can accidentally flag or even decline a legitimate cardholder’s transaction. This can happen when a customer:

  • Makes a mistake when entering their billing address at checkout
  • Has an incorrect address on file with their financial institution (e.g. if they moved recently)
  • Is traveling or living abroad (i.e. their billing address is temporarily different or ineligible)

This is why financial institutions and online marketplaces that use the AVS should caution their customers to be very careful about correctly entering their billing addresses at checkout. 

Similarly, they should advise customers to keep addresses tied to their financial accounts up-to-date to avoid confusion. Finally, they should explain the authorization charges and financial holds that may need to be cleared up because of AVS, especially if a transaction is declined.

Download Operating System Product Guide

Add AVS to a more comprehensive anti-fraud system from Unit21

Because of its limitations, the AVS should be used by marketplaces and banks as just one part of a multifaceted anti-fraud/AML system. For example, these institutions should look at other transaction data points that may indicate illicit online shopping. These could include unusual shopper email addresses, as well as suspicious shipping addresses that may be used as drop points for controlled or ill-gotten items.

With data monitoring, teams can analyze not just transactions, but a variety of different user activities - offering further insights into user behavior and improving the team’s abilities to detect and prevent fraud.

Unit21’s fraud detection tools provide more thorough detection of – and protection against – other indicators of CNP fraud. Book a demo with us today to see them in action.