3DS Authentication
Access the complete 3DS Authentication manual
3D Secure 2 is an authentication protocol that verifies whether the shopper is actually the cardholder (credit or debit). The purpose of 3DS (also called EMV 3DS) is to prevent fraud in card-not-present (CNP) transactions.
Through 3DS, the shopper’s data is sent to the card brands and issuers, who perform the authentication.
3DS stands for 3-D Secure Protocol and was developed by EMVCo, a technical body formed by the major card brands that creates specifications for secure, interoperable payment acceptance worldwide.
To perform authentication, the merchant must send the shopper’s data to the card brand through an intermediary service, the 3DS Server, which communicates with the card brand. You can use an external 3DS Server or the Braspag 3DS Server.
If your store uses an MPI external to Braspag for card authentication, you must provide the
Cavvreturned by your MPI in the Gateway authorization request. For more information, skip to the Authorization with Authentication step.
Main benefits:
- Liability for chargeback in an authenticated transaction falls to the issuer or card brand;
- Easy integration via JavaScript;
- Possibility of frictionless authentication (authentication without challenge);
- Reduces fraudulent transactions.
Keywords: Credit and debit card authentication, EMVCO, 3DS, Visa, Mastercard, Elo, E-commerce.
Important:
- Chargeback is the dispute of a credit or debit card purchase made by the cardholder when they do not recognize a transaction. 3DS authentication helps reduce chargebacks due to fraud, since the responsibility in case of chargeback shifts to the issuer, not the merchant. This transfer of responsibility is called liability shift;
- 3DS authentication is not a fraud analysis; to increase the security of your transactions, we recommend using 3DS Authentication as well as a fraud analysis service, such as Gateway Antifraud.
Updated 11 days ago