EMV® 3-D Secure (3DS) is a messaging protocol that promotes frictionless consumer authentication and enables consumers to authenticate themselves with their card issuer when making card-not-present (CNP) e-commerce purchases. The additional security layer helps prevent unauthorised CNP transactions and helps protect the merchant from exposure to CNP fraud.
The three domains consist of the merchant / acquirer domain, issuer domain, and the interoperability domain (e.g. payment systems). EMVCo has created, owns and manages the EMV® 3-D Secure – Protocol and Core Functions Specification v2.2.0 and related industry materials.
EMVCo has also made available the full EMV® 3DS Test Platform, which enables the functional testing of EMV® 3DS solutions. Letters of Approval are currently being issued for those 3DS products that have successfully tested against version 2.1.0. A list of approved products can be found on the EMVCo website. Products submitted for EMV® 3DS v2.2.0 compliance testing will also be tested against EMV® 3DS v2.1.0 to receive an EMV® 3DS v2.2.0 Letter of Approval.
Visual demonstration of how EMV® 3DS-Compliant Solutions can be implemented on a mobile device or integrated into merchant’s app. It highlights 3 possible verification scenarios: frictionless flow, one-time-passcode, and out of band.
In this webcast, recorded in October 2016, Craig Gilbert, Chair of EMVCo’s 3DS Working Group, provides an overview of EMV 3DS and shares the drivers for the new specification. Listeners will also receive insight into some use-case examples.
In this Frequently Asked Question document, readers can learn more about EMV® 3DS, the role that it plays in the payments ecosystem, and why EMVCo is involved in this area.