Wednesday, November 1, 2017
On Oct. 31, 2017, EMVCo released EMV 3-D Secure – Protocol and Core Functions Specification v2.1.0, an update to version 2.0.0 published in October 2016. The latest version includes enhancements for securing ecommerce transactions across channels and connected devices and will be supported by a new EMVCo testing program for compliant solutions set to launch in 2018.
EMV 3-D Secure (3DS) is a messaging protocol that authenticates consumers making card-not-present ecommerce purchases. The updated version offers additional functionality for enabling merchant-initiated account verification, clarifying recurring or installment payment request submittals to issuers, and improving out-of-band authentication transaction flows, according to EMVCo.
In addition, EMVCo is working collaboratively with the PCI Security Standards Council to align on its recently published PCI 3DS Security Standard and related assessment program.
"With ecommerce use-cases expanding worldwide and new technologies emerging, EMV 3DS provides a consistent, global solution to authenticate users and deliver industry-leading security and performance without compromising user experience," said Jack Pan, EMVCo Executive Committee Chair.
In conjunction with the EMVCo 3DS protocol update, American Express Co.'s SafeKey 2.0 online authentication service will be available for deployment starting in the spring of 2018.
According to AmEx, the updated platform leverages 3DS to help identify potential fraud in real time, enables merchants and card issuers to exchange more detailed transaction information, and makes it easier for consumers to check out securely across digital channels ranging from traditional ecommerce websites to in-app purchases.
"The number of consumers making purchases through mobile channels is continuing to grow, and the expected growth of Internet-connected devices will further fuel digital commerce activity," said Jaromir Divilek, Executive Vice President, Global Network Business at AmEx. "SafeKey 2.0 complements American Express' fraud-prevention capabilities by addressing the evolving needs of merchants, card issuers and card members."
Divilek added that SafeKey 2.0 will also support card issuers and merchant acquirers in the European Union as they address the Strong Customer Authentication requirements of the Payment Services Directive 2.0.
Notice to readers: These are archived articles. Contact names or information may be out of date. We regret any inconvenience.