Skip to content

Authorization core

The Authorization core serves as the central hub for gathering information on all potential restrictions that could prevent authorization approval. It receives relevant data from both the Core Banking system (CBS) and Card Management System (CMS). This information is subsequently utilized to approve authorization received from the Card association via the Card processor. After evaluating whether the authorization can be approved, the Authorization core communicates the results back to the Card association through the Card processor.

Checks done based on data provided by CMS:

Card settings check

  • Card existence
  • Card status i.e. card can be blocked/revoked
  • Expiry date
  • etc.

Card limits check

  • Calculating transaction amounts in set period to match specified limit
  • Personalized limit for POS transactions
  • Default limit for ATM withdrawals
  • etc.

Card restrictions check

  • Allowed card transaction types
  • Allowed transaction from specified countries
  • etc.

Checks done based on data provided by CBS:

Account balance check

  • Account status check
  • The Authorization core use asynchronous communication with the Core Banking System (CBS) to receive and report back information of current account balance
  • Account balance information is utilized for authorization hold calculation (and result is reported back to CBS) and in case of Stand in processing

Authorization hold management

  • The Authorization core calculates holds for each account connected to card created in CMS
  • Hold is calculated in account’s currency and lasts according to client’s specification or until it is reversed or settled

In case of a communication breakdown with the Core Banking System (CBS), the Authorization core is designed to persist in its operations. It retains the most recent account balance information, allowing it to function seamlessly during periods without a connection to the CBS. In such instances, the Authorization core calculates the available balance by considering the authorized transactions that have been processed.

The Authorization core operates independently with its own logic and is not reliant on the Card processor settings. This independence enables flexible customization, accommodating the preferences of the client and the information received in the Authorization request.