3DS Protocol
In the Link de pagamento and Checkout Cielo, you have different layers of security to prevent and mitigate fraud. One of them is the 3DS protocol and authentication.
What is 3DS authentication?
It is an authentication protocol that confirms whether the shopper is indeed the cardholder (credit or debit). The goal of 3DS (also known as EMV 3DS) is to prevent fraud in card-not-present (CNP) transactions.
Through 3DS, the shopper's data is sent to the card networks and issuers who will perform the authentication.
3DS stands for 3-D Secure Protocol and was developed by EMVCo, a technical body formed by the major card networks that creates specifications for the secure interoperability and acceptance of payments worldwide.
To perform the authentication, the store needs to send the shopper's data to the card network through an intermediary service that communicates with the network. This service is integrated into Link de Pagamento and Checkout, so Cielo is responsible for sending this information in each transaction, as the payment page is under Cielo's domain.
Main benefits:
- The responsibility in case of a chargeback for an authenticated transaction lies with the issuer or the network;
- The system is already integrated into the Cielo Link de Pagamento and Checkout;
- Possibility of silent authentication (authentication without challenge);
- Minimizes fraudulent transactions.
Important:
- Chargeback is a dispute of a debit or credit card purchase made by the cardholder when they do not recognize a particular purchase. 3DS authentication helps reduce the occurrence of chargebacks due to fraud, as the responsibility in case of a chargeback shifts to the issuer, not the store. This transfer of responsibility in case of a chargeback is called liability shift;
- 3DS authentication is not a fraud analysis; to increase the security of your transactions, we have other security tools integrated into the Link de Pagamento and Checkout.
Who can use 3DS?
Any establishment that wants an extra layer of security for their transactions.
Which card networks are available?
The card networks available for authentication via 3DS are:
3DS 2.2
- Visa;
- Mastercard;
3DS 2.1
- Elo;
- Amex.
To enable 3DS for the Amex network, contact the Cielo support team.
When to use it?
3DS authentication is mandatory for all debit card transactions and optional for credit card transactions. Therefore, in the Link de Pagamento and Checkout, all debit card transactions already have this protocol active. To enable it for credit card transactions, follow the steps available in the menu 6. Configure authentication via 3DS protocol.
When is the 3DS protocol triggered during payment?
The 3DS protocol, when enabled in the store, is triggered when the cardholder is making the payment on the payment page. If the authentication is successful, we send this payment for authorization flow with the issuing bank and network. If it is not successful, we prevent the payment from being completed for the store's security.
For which payment methods is 3DS triggered?
- Debit card (mandatory);
- Credit card (optional).
What are the types of cardholder authentication?
- Authentication without challenge (silent authentication): when the issuer performs the authentication without the need for additional validation from the cardholder;
- Authentication with challenge: when the issuer needs to perform additional validation of the cardholder and presents a challenge, which could be the confirmation of a code sent by the bank's app, SMS, etc.
How to know if the transaction was authenticated?
You can check this information within the details of the orders made with the payment link and Checkout, by following this path: go to the Cielo website > E-commerce > Meus Links na área do Link de Pagamento > Pedidos > click on “+" to see the details of the order you want. When opened, check the information in the Status da autenticação field.
| Status | Description | Responsible for the chargeback |
|---|---|---|
| Authenticated | Successfully authenticated by 3DS. | Issuer |
| Not authenticated | Not authenticated by 3DS. | Merchant |
| Not applicable | Not applicable to the 3DS authentication process. | Merchant |
Does the 3DS 2.2 protocol authenticate the cardholder in recurring transactions?
The current integration authenticates the first transaction of a recurrence. In subsequent transactions, the responsibility in case of a chargeback remains with the establishment.
Is it possible to disable the 3DS protocol?
If you wish, you can disable the service. To enable or disable the service, go to the Cielo website > E-commerce > Meus links > Configurações > Configurações da loja. Under Habilitar autenticação 3DS 2.0 para transações de cartão de crédito, click the checkbox to uncheck the option. Click Salvar.
Updated about 1 month ago