Transaction Security
H017WR70
H017WR70
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Overview of <strong>Transaction</strong> <strong>Security</strong> Technology Solutions<br />
Consumer Authentication Through 3-D Secure<br />
1<br />
Consumer<br />
Authentication<br />
3-D Secure represents a set of protocols for connecting the consumer / cardholder directly to the<br />
issuing bank so information can be shared to improve authentication in online transactions<br />
• Has been in use for more than 10 years and offered by most card brands; each brand has its own name<br />
for 3-D Secure (i.e. Verified by Visa, MasterCard SecureCode, American Express SafeKey)<br />
• 3-D Secure is based on a 3 domain model (hence the 3-D in the name)<br />
Acquirer Domain<br />
Interoperability Domain<br />
Issuer Domain<br />
• The merchant and acquiring<br />
bank initiating the payment<br />
and to which funds are paid<br />
• A Merchant Integrator (MI) is<br />
used to connect to the<br />
Interoperability Domain and<br />
share information<br />
• The infrastructure and<br />
components provided by the<br />
card scheme (debit, credit or<br />
other type of payment card) to<br />
support the 3-D Secure<br />
protocols<br />
• Connects to the MI and ACS<br />
• The financial institutions that<br />
issued the card being used<br />
• An ACS (Access Control<br />
Server) is a server with<br />
registered cardholder account<br />
and access information used<br />
in authentication<br />
Source: Visa, MasterCard, CardinalCommerce.<br />
20