EMV® 3-D Secure (3DS) is a messaging protocol that promotes frictionless consumer authentication and enables consumers to authenticate themselves with their card issuer when making card-not-present (CNP) e-commerce purchases. The additional security layer helps prevent unauthorised CNP transactions and helps protect the merchant from exposure to CNP fraud.
The three domains consist of the merchant / acquirer domain, issuer domain, and the interoperability domain (e.g. payment systems). EMVCo has created, owns and manages the EMV® 3-D Secure – Protocol and Core Functions Specification v2.2.0 and related industry materials.
EMVCo has also made available the full EMV® 3DS Test Platform, which enables the functional testing of EMV® 3DS solutions. Letters of Approval are currently being issued for those 3DS products that have successfully tested against version 2.1.0. A list of approved products can be found on the EMVCo website. Products submitted for EMV® 3DS v2.2.0 compliance testing will also be tested against EMV® 3DS v2.1.0 to receive an EMV® 3DS v2.2.0 Letter of Approval.
In this Frequently Asked Question document, readers can learn more about EMV® 3DS, the role that it plays in the payments ecosystem, and why EMVCo is involved in this area.
In this Frequently Asked Question document, readers can learn more about how the ‘Use of FIDO Data in 3DS Messages’ white paper provides guidance to the payment industry of how FIDO data can be used by card issuers as part of their risk evaluations.
In this Frequently Asked Question document, readers can learn more about the EMV® 3DS Test Platform, product testing and approval framework.
This document explains why a specific message extension was required for the travel industry and how it has evolved to meet the needs of this sector.
This webcast explores how the EMV® 3DS Specification can help support retailers and the payments community in providing advanced authentication methods, enabling security and convenience for consumers while meeting regulatory requirements.
This webinar from the Electronic Transactions Association (ETA), recorded in July 2019, discusses how EMV® 3-D Secure (3DS) is implemented in eCommerce environments and its relationship with the new Strong Customer Authentication (SCA) requirements under Payment Service Directive 2, and PCI 3DS security standards. It features Tabitha Odom, former-Chair of the EMVCo 3DS Working Group, and leading representatives from Google, CardinalCommerce and ControlScan.
In this webcast, recorded in July 2019, Tabitha Odom, former-Chair of the EMVCo 3-D Secure Working Group, provides an overview of EMV® 3-D Secure (3DS). Listeners will receive insight into the key updates within version 2.2.0, such as the exemptions to Strong Consumer Authentication (SCA) for the European Second Payment Services Directive (PSD2), and how it meets current industry requirements.
Visual demonstration of how EMV® 3DS-Compliant Solutions can be implemented on a mobile device or integrated into merchant’s app. It highlights 3 possible verification scenarios: frictionless flow, one-time-passcode, and out of band.