On Tue, 2007-07-10 at 11:51 -0700, Kelvin Park wrote: > I'm trying to make a program with PHP, that prevents ecommerce fraud orders. > Technically, what's the most effective way to prevent fraud orders on > e-commerce web sites? PHP is the least of your worries! 1) Know your customer. Perform address verification and basic telephone checks. Talk to your customer before you ship. Only ship to a billing address on a credit card you can verify by calling their bank or by Automatic Address Verification. 2) If you do any serious volume, you will need to process your own credit cards. The processing services are much more expensive than having your own merchant account through your bank. Follow the credit card companies guidelines and rules regarding identity checking and storage of customer information to the letter. Call any suspicious orders into the credit card company's fraud departments before shipping. They can help validate the order. 3) Become familiar with the major scams and learn to recognize them. Don't be greedy. Orders which look to good to be true are. Customers who want you to ship a laptop computer overnight to a non-billing address on a credit card who have an IP address that originates in Africa are probably scammers (I've had this happen several times). 4) Get burned a few times -- it can't be helped. Experience is your best teacher. 5) Repeat steps 1 - 4. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
