London – January 2019. NOIRE announces 3-D Secure (3DS) version 2.0 availability. This new version of the 3DS authentication protocol will be made available to NOIRE customers in addition to the standard 3DS authentication processes. Included in the release are several key changes to the handling of eCommerce and mobile payments. With PSD2 regulations on strong customer authentication coming into effect, it is more important than ever to understand how 3DS 2.0 can help ensure compliance while reducing fraud rates and improving checkout conversion.
A full summary of the 3DS 2.0 implementation is available through technical support.
3DS 2.0 is an update to the existing 3DS authentication protocol. The latest protocol offers a streamlined customer journey, reducing shopping cart abandonment using risk-based authentication. The new version is also fully aligned with the PSD2 regulatory technical standards on strong customer authentication (SCA).
What are the benefits of 3DS 2.0 compared to 1.0?
3DS 2.0 reduces friction in the customer journey by removing the initial enrolment process. Risk-based authentication allows the issuer to evaluate the fraud risk based on additional data elements, and bypass full authentication if the risk is low enough. If authentication is required, the static passwords used by 3DS 1.0 are replaced by biometric or two-factor authentication.
The updated protocol offers support for in-app purchases and enables merchants to integrate the authentication process into their own checkout experience for both app and browser-based integrations. Non-payment customer authentication, such as using tokens, is also available using the latest version.
How will NOIRE support 3DS 2.0?
The NOIRE Payments Gateway will support 3DS 2.0 for customers integrated via both Server to Server and COPYandPAY. Supported are the following brands for 3DS 2.0:
• American Express
• Carte Bancaire
• Bancontact – Mistercash
NOIRE will continue to support 3DS 1.0 alongside 2.0, until further notice from card schemes on timings for deprecation of the older version. The cost for a 3DS 2.0 and 3DS 1.0 remain free of charge to NOIRE customers
Customers in Europe are recommended to migrate to 3DS 2.0 by September 14, 2019, when the PSD2 requirements on SCA come into effect. While it is possible to meet these requirements using 3DS 1.0 if used in combination with two-factor authentication (2FA), 3DS 2.0’s built-in 2FA support brings it fully in line with these PSD2 requirements. Transactions that do not meet these requirements (those that are not authenticated by a form of 2FA) may be declined once PSD2 comes into effect.
Issuers and acquirers in Europe are expected to offer 3DS 2.0 from April 1, 2019 onward. From this date, merchants attempting 3DS 2.0 authentication will benefit from a liability shift.
How to migrate to 3DS 2.0?
Customers will be required to obtain new MIDs from their acquiring partner. Configuration of 3DS 2.0 will be managed via a new option within the BIP interface.
For customers integrated via COPYandPAY, the upgrade will be very simple. An updated COPYandPAY widget will be deployed to handle the front-end interaction between the cardholder and the issuer. Customers integrated via Server to Server will need to be prepared to collect and send additional data fields to be used for risk-based authentication. Full integration details on migrating to 3-D Secure 2.0 are available technical support.
If you have any questions or concerns relating to 3-D Secure 2.0, please contact our support team.
About NOIRE: NOIRE is a leading UK-based boutique payment and fraud risk solution provider. The company offers internet merchant accounts, alternative payment methods and payment gateway technology, along with pioneering the most advanced risk management and fraud protection technology for companies ranging from large FTSE listed companies to new fast-growing merchants.