3D Secure provides an additional level of security for online credit card payments, providing real-time authentication of a cardholder’s account ownership.
3D (3 Domain) Secure is a new credit card transaction security technology, marketed as Verified by Visa and Mastercard SecureCode. It provides merchants with real-time authentication of a cardholder’s account ownership during online payment transactions, by redirecting the transaction to a web page at the cardholder’s bank and requiring the buyer to enter a personal password of their choice. 3D Secure is availabel for Visa, Mastercard and JCB transactions.
This process creates a safer and more cost-effective ecommerce solution for merchants and their customers. Adding this extra stage of authentication in the payment authorization process allows the card issuers to guarantee the merchant payment, in the event of fraud or disputes. (Contact your bank for details.)
How is 3D Secure integrated into the payment process?
Verified by Visa / Mastercard SecureCode provides cardholders with a PIN to protect their online transactions, just like they use their PIN at an ATM.
- The buyer selects goods or services from a Verified by Visa / Mastercard SecureCode online store and proceeds to the payment page.
- The buyer enters their credit card number. The online store connects with the card issuer (the cardholder’s financial institution).
- The card issuer initiates a pop-up window on the buyer’s computer screen that includes a Personal Assurance Message/Greeting, which the buyer provided when enrolling in the service.
- The buyer looks for and confirms the Personal Assurance Message/Greeting, then enters their password (PIN number). The card issuer will then confirm the buyer’s identity to the merchant. The purpose is to confirm that they are the authorised cardholder.
- The payment is authorized and the ePay transaction proceeds as normal. Liability for the transaction passes away from the merchant. If the card is verified, the card issuer (the buyer’s financial institution) guarantees payment of the transaction to the merchant in the event of fraud or dispute.
3D Secure questions
How is 3D Secure set up?
In most cases, merchants must be approved by their bank as a 3D Secure merchant. Multibase will assist. There is still varying acceptance among card issuers and acquiring banks. Some banks support 3D Secure for both their merchants and their cardholders; some support only one or the other.
Most major card issuers support 3D Secure. Cardholders must enrol with their financial institution (the card issuer). If the cardholder wishes to buy online from you, and is not already enrolled in the service, they should be offered the opportunity to enrol during the payment process.
The merchant’s web site must also be enabled with special 3D Secure software (a “Merchant Plug-In”) which handles the redirection of the transaction to and from the card issuer. Multibase has done the hard work and reduced the expense by integrating 3D Secure into ePay, to make this extra security measure easy and much less expensive for our merchants. There is no third party software to install on the merchant’s web site.
Merchants using the ePay Payment Page need only be enabled as a 3D Secure merchant. The Payment Page will handle the rest. Merchants using the ePay API, where ePay is integrated transparently into their own web system, will need to have their web developers implement the new security measures. As always, Multibase provides readily available technical support. Multibase can do this work for you at our normal development rates.
How much longer does a 3D Secure transaction take?
On average, 3D Secure adds 10-20 seconds to the total transaction time.
Does my bank support 3D Secure?
All banks apart from CBA & BankWest support the 3D-Secure protocol via the Camtech Payment Gateway as transaction acquirers for Mastercard and Visa, as do some other non-bank acquirers. This means they will attempt to authenticate 3D Secure transactions. Not all banks support 3D Secure for their cardholders. Becuase of the shift of liability away from the merchant, it is still advantageous for merchants to enrol in the program.
How do I treat cards that are not registered for 3D Secure?
Once you have decided that you will only accept 3D Secure transactions, all your transactions would be redirected to the 3D Secure process, and then back to the normal transaction process. You can decide to process cards not registered for 3D Secure in the existing way, however these transactions do not carry the same benefits of guaranteed payment as a 3D Secure transaction.
With the ePay payment page, if a merchant is set up as a 3D Secure merchant, then ALL Visa and Mastercard transactions must authenticate with 3D Secure or the transaction will be considered to have failed. The Payment Page treats Amex and Diners as unenrolled cards and handles them accordingly.
With the ePay API, if the 3D Secure authentication fails the transaction could theoretically still be processed in the normal way, but this would be at the merchant’s risk and is not advised. Please talk with your Multibase adviser about the options.
If the card issuer does not support 3D Secure, the system will process transactions with the same precautions that you currently use, however they will not carry the same benefits of guaranteed payment as a 3D Secure transaction.
What are the benefits of 3D Secure?
- Cardholder identification. Because the Visa Card Issuer authenticates the cardholder through a PIN number, you are assured that the cardholder is who they say they are, reducing fraud and disputes significantly.
Increased online card usage as a result of greater consumer confidence in a more secure e-commerce payment environment. - Reduced cardholder disputes because the cardholder’s identity is authenticated during the transaction. Visa estimates that its system will reduce chargebacks by at least 50%.
- Lower transaction costs through fewer chargebacks and disputes.
- Guaranteed payment for the most common types of internet cardholder disputes.
- Enhanced reputation as a safe shopping site through participation in the scheme and display of the logos.
3D Secure provides an additional level of security for online credit card payments, providing real-time authentication of a cardholder’s account ownership.
3D (3 Domain) Secure is a new credit card transaction security technology, marketed as Verified by Visa and Mastercard SecureCode. It provides merchants with real-time authentication of a cardholder’s account ownership during online payment transactions, by redirecting the transaction to a web page at the cardholder’s bank and requiring the buyer to enter a personal password of their choice. 3D Secure is availabel for Visa, Mastercard and JCB transactions.
This process creates a safer and more cost-effective ecommerce solution for merchants and their customers. Adding this extra stage of authentication in the payment authorization process allows the card issuers to guarantee the merchant payment, in the event of fraud or disputes. (Contact your bank for details.)
How is 3D Secure integrated into the payment process?
Verified by Visa / Mastercard SecureCode provides cardholders with a PIN to protect their online transactions, just like they use their PIN at an ATM.
- The buyer selects goods or services from a Verified by Visa / Mastercard SecureCode online store and proceeds to the payment page.
- The buyer enters their credit card number. The online store connects with the card issuer (the cardholder’s financial institution).
- The card issuer initiates a pop-up window on the buyer’s computer screen that includes a Personal Assurance Message/Greeting, which the buyer provided when enrolling in the service.
- The buyer looks for and confirms the Personal Assurance Message/Greeting, then enters their password (PIN number). The card issuer will then confirm the buyer’s identity to the merchant. The purpose is to confirm that they are the authorised cardholder.
- The payment is authorized and the ePay transaction proceeds as normal. Liability for the transaction passes away from the merchant. If the card is verified, the card issuer (the buyer’s financial institution) guarantees payment of the transaction to the merchant in the event of fraud or dispute.
3D Secure questions
How is 3D Secure set up?
In most cases, merchants must be approved by their bank as a 3D Secure merchant. Multibase will assist. There is still varying acceptance among card issuers and acquiring banks. Some banks support 3D Secure for both their merchants and their cardholders; some support only one or the other.
Most major card issuers support 3D Secure. Cardholders must enrol with their financial institution (the card issuer). If the cardholder wishes to buy online from you, and is not already enrolled in the service, they should be offered the opportunity to enrol during the payment process.
The merchant’s web site must also be enabled with special 3D Secure software (a “Merchant Plug-In”) which handles the redirection of the transaction to and from the card issuer. Multibase has done the hard work and reduced the expense by integrating 3D Secure into ePay, to make this extra security measure easy and much less expensive for our merchants. There is no third party software to install on the merchant’s web site.
Merchants using the ePay Payment Page need only be enabled as a 3D Secure merchant. The Payment Page will handle the rest. Merchants using the ePay API, where ePay is integrated transparently into their own web system, will need to have their web developers implement the new security measures. As always, Multibase provides readily available technical support. Multibase can do this work for you at our normal development rates.
How much longer does a 3D Secure transaction take?
On average, 3D Secure adds 10-20 seconds to the total transaction time.
Does my bank support 3D Secure?
All banks apart from CBA & BankWest support the 3D-Secure protocol via the Camtech Payment Gateway as transaction acquirers for Mastercard and Visa, as do some other non-bank acquirers. This means they will attempt to authenticate 3D Secure transactions. Not all banks support 3D Secure for their cardholders. Becuase of the shift of liability away from the merchant, it is still advantageous for merchants to enrol in the program.
How do I treat cards that are not registered for 3D Secure?
Once you have decided that you will only accept 3D Secure transactions, all your transactions would be redirected to the 3D Secure process, and then back to the normal transaction process. You can decide to process cards not registered for 3D Secure in the existing way, however these transactions do not carry the same benefits of guaranteed payment as a 3D Secure transaction.
With the ePay payment page, if a merchant is set up as a 3D Secure merchant, then ALL Visa and Mastercard transactions must authenticate with 3D Secure or the transaction will be considered to have failed. The Payment Page treats Amex and Diners as unenrolled cards and handles them accordingly.
With the ePay API, if the 3D Secure authentication fails the transaction could theoretically still be processed in the normal way, but this would be at the merchant’s risk and is not advised. Please talk with your Multibase adviser about the options.
If the card issuer does not support 3D Secure, the system will process transactions with the same precautions that you currently use, however they will not carry the same benefits of guaranteed payment as a 3D Secure transaction.
What are the benefits of 3D Secure?
- Cardholder identification. Because the Visa Card Issuer authenticates the cardholder through a PIN number, you are assured that the cardholder is who they say they are, reducing fraud and disputes significantly.
Increased online card usage as a result of greater consumer confidence in a more secure e-commerce payment environment. - Reduced cardholder disputes because the cardholder’s identity is authenticated during the transaction. Visa estimates that its system will reduce chargebacks by at least 50%.
- Lower transaction costs through fewer chargebacks and disputes.
- Guaranteed payment for the most common types of internet cardholder disputes.
- Enhanced reputation as a safe shopping site through participation in the scheme and display of the logos.