Investigate Transactions
The Results page includes an authentication results summary on the left, alongside cardholder information on the right.
Auth Session Results Panel
The Auth Session Results panel shows transaction details with risk alerts.
A result is provided for each risk alert. In general, you can interpret results as follows:
Passed means the result is okay. The check returned a result that is not typically associated with fraud.
Warning means the result requires further investigation. It could also mean the check did not return a response within the time limit (for example, due to a network error).
Failed means the result is not okay. The check returned a result that could possibly indicate fraud.
N/A means the check was not requested.
Unknown means not enough information is available to determine the status, for example, if a transaction originated from an unknown implementation (neither Portal nor Desktop).
- Transaction Source
The implementation from which a transaction originated, for example, Capture or Direct.
- Barcode/MRZ Format
Was the barcode format recognized by the Intellicheck Identity Platform?
Passed means we recognized the barcode or MRZ format.
Warning means we could not process the barcode.
Failed means we did not recognize the barcode format; therefore, it could possibly indicate fraud.
N/A means no barcode request was made.
- Expired ID
Has the ID document expired?
Passed means the document ID is not expired.
Warning is not an option for this risk alert.
Failed means the ID expiration date occurs in the past.
N/A means no request was made.
- Front Matches Barcode/MRZ
Did the front-side OCR text match the decoded barcode or MRZ text?
Passed means the text matched.
Warning is not an option for this risk alert.
Failed means one or more important mismatches were found.
N/A means no request was made.
- Document Liveness Front
Did the front-side of the ID pass a document liveness check?
Passed means the submitted image of the front side of the ID was authenticated with sufficient certainty as an original, physical, unaltered document.
Warning is not an option for this risk alert.
Failed means the submitted image of the front side of the ID could not be authenticated with sufficient certainty as an original, physical, unaltered document.
N/A means no request was made.
- Document Liveness Back
Did the back-side of the ID pass a document liveness check?
Passed means the submitted image of the back side of the ID was authenticated with sufficient certainty as an original, physical, unaltered document.
Warning is not an option for this risk alert.
Failed means the submitted image of the back side of the ID could not be authenticated with sufficient certainty as an original, physical, unaltered document.
N/A means no request was made.
- Selfie
Did the submitted selfie image match the document ID image and pass a liveness check? Selfie liveness detection verifies that the person is genuinely present.
Passed means that the submitted selfie image passed a face match and also passed a liveness detection check.
Warning means that only one of the two selfie checks were performed, either liveness detection or face match, but not both.
Failed means that the submitted selfie image did not pass a face match and/or a liveness detection check.
N/A means no request was made.
- Phone Number
Did the phone number pass a validation check?
Passed means the phone number appears to engage in legitimate user behavior online.
Warning means the phone number appears to be associated with risky usage or is likely to engage in malicious behavior.
Failed means the phone number could be associated with very high risk usage that has already engaged in abuse. This could indicate recent or excessive abuse and fit the profile of a typical risky number.
N/A means no request was made.
- Device Address
Is the device IP address potentially engaged in fraud?
Passed means that the device is not associated with fraudulent behavior.
Warning means the device appears to be suspicious but not necessarily fraudulent.
Failed means that the device is likely to commit fraud or engage in abusive behavior. Further investigation is recommended.
N/A means no request was made.
- Mailing Address
Did the mailing address pass a validation check?
Passed means the mailing address is not at high risk for being fraudulent.
Warning means the mailing address appears to be suspicious but not necessarily fraudulent.
Failed means the mailing address is at high risk and potentially fraudulent.
N/A means no request was made.
- Watchlist
Did a watchlist and sanctions screening check return results? If so, do the results merit further investigation?
Passed means the information was not found in any watchlists.
Warning means further investigation is recommended. The information was found in one or more watchlists. Or this could mean that no decision was made due to insufficient information provided, for example, if the request only included part of a name.
Failed is not an option for this risk alert.
N/A means no request was made.
- Criminal Background
Did a criminal background check return results?
Passed means the information was not found in criminal databases.
Warning means further investigation is recommended. The information was found in one or more criminal databases. Or this could mean that no decision was made due to insufficient information provided, for example, if the request only included part of a name.
Failed is not an option for this risk alert.
N/A means no request was made.
- Transaction ID
Each transaction is recorded with a unique ID for tracking purposes. Select copy
to copy the transaction ID number to the clipboard.- Transaction Date
The date and time at which the transaction was initiated by a customer associate. The time is converted to the local time of the current user.
Cardholder Information
A cardholder information box shows the findings for risk alerts. You can open and close a box.
The box header contains messages about results.
On the left in this example, the Auth Sessions Results panel shows Passed results for the following risk alerts: Barcode Format, Expired ID, and Front Matches Barcode. On the right, the first header contains a few messages about two risk alerts. For the Barcode Format risk alert, the messages are Barcode recognized and Unexpired ID. For the Front Matches Barcode risk alert, the message is Matches barcode.
The following table describes messages. Message colors are shown along with the message text and a brief description.
Risk Alert | Message Color | Message Text | Description |
|---|---|---|---|
Barcode Format |
| Barcode recognized | The barcode format was recognized and decoded by Intellicheck. Our ID validation check found this barcode format in our database. |
Barcode Format |
| Barcode unrecognized | The barcode format was unrecognized and not decoded by Intellicheck. Our ID validation check did not find this barcode format in our database. |
Barcode Format |
| Unable to parse barcode | We could not decode this barcode. This could be due to a system or configuration issue. |
Barcode Format |
| Expired ID | The ID document barcode contained an expiration date in the past, which means it is expired. |
MRZ Format |
| Valid | The ID document machine readable zone (MRZ) was recognized, and its data was decoded. |
MRZ Format |
| Invalid | The ID document machine readable zone (MRZ) was not recognized, and its data was not decoded. |
MRZ Format |
| N/A | This check was not performed. |
Expired ID |
| Expired ID | The ID document barcode or MRZ contained an expiration date in the past, which means it is expired. |
Front Matches Barcode |
| Matches Barcode | The text on the front of the ID document is the same as the text derived from the barcode, which is typically located on the back of the document. |
Front Matches Barcode |
| Does not match barcode | The text on the front of the ID document is not the same as the text derived from the barcode, which is typically located on the back of the document. |
Front Matches Barcode |
| OCR Match check was not performed | This check was not performed. |
Front Matches MRZ |
| Matches MRZ | The text on the front of the ID document is the same as the text derived from the machine readable zone (MRZ), which is an area of the document containing data in a format that can be quickly read by a machine. |
Front Matches MRZ |
| Does not match MRZ | The text on the front of the ID document is not the same as the text derived from the machine readable zone (MRZ), which is an area of the document containing data in a format that can be quickly read by a machine. |
Front Matches MRZ |
| OCR Match check was not performed | This check was not performed. |
Document Liveness Front |
| Live | The front of the ID document is live, meaning it passed a verification process to determine if it is authentic by checking against three presentation attack vectors: portrait substitution, screen replay, and printed copy. |
Document Liveness Front |
| Not Live | The front of the ID document is not live, meaning it did not pass a verification process to determine if it is authentic by checking against three presentation attack vectors: portrait substitution, screen replay, and printed copy. |
Document Liveness Front |
| N/A | This check was not performed. |
Document Liveness Back |
| Live | The back of the ID document is live, meaning it passed a verification process to determine if it is authentic by checking against three presentation attack vectors: portrait substitution, screen replay, and printed copy. |
Document Liveness Back |
| Not Live | The back of the ID document is not live, meaning it did not pass a verification process to determine if it is authentic by checking against three presentation attack vectors: portrait substitution, screen replay, and printed copy. |
Document Liveness Back |
| N/A | This check was not performed. |
Selfie |
| Matches document and is live | The selfie portrait is the same as the ID document image, and the selfie portrait is that of a genuine person. |
Selfie |
| Does not match document or is not live | The selfie portrait is not the same as the ID document image, and/or the selfie portrait is not that of a genuine person. |
Selfie |
| N/A | This check was not performed. |
Selfie |
| One of two checks performed | Only one of two checks was performed. Either Face Match or Is Live but not both. Face match compares the selfie portrait to the document image. Is live evaluates whether the selfie portrait is a genuine person. |
Watchlist Result |
| Not found in watchlist | Information on the ID document, such as first name and last name, was not found in a database search of global watchlists and news sources. |
Watchlist Result |
| Found in watchlist | Information on the ID document, such as first name and last name, was found in a database search of global watchlists and news sources. |
Watchlist Result |
| N/A | This check was not performed. |
Criminal Background Result |
| No criminal records found | Information on the ID document, such as first name and last name, was not found in a criminal database search. |
Criminal Background Result |
| Criminal record(s) found | Information on the ID document, such as first name and last name, was found in a criminal database search. |
Criminal Background Result |
| N/A | This check was not performed. |
Fraud Results |
| Device Address/Phone Number/Mailing Address is high risk | The device IP address, phone number, or mailing address is likely to commit fraud or engage in abusive behavior. Further investigation is recommended. |
Fraud Results |
| Device Address/Phone Number/Mailing Address is highly suspicious | The device IP address, phone number, or mailing address appears to be suspicious but not necessarily fraudulent. |
Fraud Results |
| Device Address/Phone Number/Mailing Address is low risk | The device IP address, phone number, or mailing address is not associated with fraudulent behavior. |
Fraud Results |
| Device Address/Phone Number/Mailing Address is N/A | This check was not performed. |
