Securitate

3DS fără fricțiune

Optimizați-vă strategia 3D Secure pentru a minimiza fricțiunea pentru clienți, menținând în același timp rate ridicate de autorizare. Soluția 3DS fără fricțiune de la Cardflo aplică inteligent autentificarea numai atunci când este necesar, echilibrând cerințele de securitate cu o experiență perfectă pentru clienți.

Această abordare ajută la reducerea ratelor de abandon.

Categorie
Securitate
Capabilități
10
Disponibil pe
Toate planurile
Aplică acum

Prezentarea generală

Frictionless 3D Secure represents an authentication path within the EMV 3-D Secure protocol that allows a transaction to proceed without active cardholder interaction.

In this specific workflow, the merchant's 3DS Server transmits a comprehensive data payload to the Access Control Server (ACS) managed by the issuer. This data often include device fingerprinting, IP address details, and shipping history.

If the issuer deems the risk profile acceptable based on this evidentiary data, the transaction is granted a frictionless status, bypassing the need for a one-time password or biometric prompt.

This mechanism sits between the checkout and the authorisation request in the payments stack, functioning as a primary tool for compliance with Strong Customer Authentication (SCA) under PSD2.

By prioritising frictionless flows, merchants aim to reduce the likelihood of cart abandonment caused by customer drop-off during the challenge phase while maintaining the shift in liability for fraud-related disputes.

Cum funcționează

  1. Data Transmission and Analysis

    The merchant gateway collects and sends over 150 data elements to the issuer via the 3DS directory server.

    This enriched packet includes billing address, account age, and browser settings, allowing the issuer to perform a thorough risk assessment of the transaction attempt before deciding whether to demand further proof of identity.

  2. Risk Based Authentication Decision

    The issuer Access Control Server (ACS) evaluates the risk profile in real-time. If the data elements align with the cardholder's historical behaviour and device profile, the issuer returns a transStatus of 'Y' or 'A', signifying a successful frictionless result.

    This allows the payment process to continue without user interruption.

  3. Mandatory Challenge Fallback

    If the risk assessment triggers specific internal thresholds or if the transaction falls under a high-risk category without an applicable exemption, the issuer initiates a challenge.

    The cardholder must then complete a stepped-up authentication process, such as a biometric scan or a code received via an banking application.

  4. Authorisation and Liability Shift

    Once the frictionless authentication is successful, the merchant proceeds to request authorisation from the acquirer.

    Even without a manual challenge, the merchant typically receives a liability shift, meaning the issuer bears the cost of certain fraudulent chargebacks, provided the 3DS2 requirements for the specific jurisdiction and scheme are satisfied.

De ce contează

Conversion Rate Preservation

Every additional step in the checkout sequence increases the probability of basket abandonment. By utilising frictionless paths for the majority of low-risk transactions, businesses can satisfy regulatory requirements like SCA without introducing unnecessary barriers.

This balance is critical for digital goods and subscription services where a high-friction experience leads to immediate customer churn and lost lifetime value.

Fraud Liability Management

Frictionless 3DS enables businesses to transfer the financial responsibility for fraudulent disputes to the issuer while maintaining a swift checkout experience. Unlike 3DS1 which often required a challenge for every transaction, the 3DS2 protocol permits this liability shift through passive data exchange.

This protects the merchant’s bottom line from unauthorised transaction claims without damaging the user journey.

Cazuri de utilizare

Subscription-Based Services

For recurring billing and Merchant Initiated Transactions (MIT), initial frictionless 3DS setup ensures subsequent payments are processed with the correct indicators, reducing dunning issues and decline rates across the billing cycle.

Low-Value Retail Transactions

E-commerce retailers processing frequent, small-ticket items can apply SCA exemptions for transactions under thirty Euros, using frictionless flows to maintain speed while satisfying the relevant European regulatory frameworks.

High-Frequency Digital Platforms

Gaming or streaming platforms benefit from frictionless flows by recognising trusted devices and returning users, minimising payment friction for enthusiasts who expect near-instant access to digital content after hitting the pay button.

În cifre

70-90%
Frictionless Rate

Typical frictionless rates observed in mature 3DS2 markets where high-quality data is shared between merchants and issuers, though this varies by industry and region.

20-30%
Cart Abandonment Reduction

Industry research suggests a significant decrease in drop-off when moving from mandatory 3DS1 challenges to optimised frictionless 3DS2 flows for low-risk transactions.

<2s
Authentication Time

The speed at which a frictionless 3DS response is typically returned by the directory server, compared to much longer durations for manual challenge interactions.

Ready to route with 3DS fără fricțiune?

Talk to our team about a live rollout on your acquiring stack.

Aplică acum

What you get with 3DS fără fricțiune

  • Aplicare dinamică 3DS bazată pe riscul tranzacției și cerințele emitentului
  • Motor de reguli configurabil pentru ajustarea fină a pragurilor de autentificare
  • Suport pentru 3DS2 și fallback la 3DS1 acolo unde este necesar
  • Reducerea abandonului coșului de cumpărături datorită unui număr mai mic de pași de autentificare
  • Rate de autorizare îmbunătățite prin îndeplinirea mandatelor de reglementare
  • Analize în timp real privind performanța 3DS și ratele de provocare
  • Comprehensive logging of the 3DS Server Transaction ID (dsTransID) for dispute resolution and auditing.
  • Reduced latency in the authentication phase through direct connectivity with scheme directory servers.
  • Detailed reporting on challenge rates and frictionless success percentages by issuer and BIN.
  • Compliance with PSD2 and upcoming PSD3 mandates through standardised authentication data fields.
See 3DS fără fricțiune on your acquiring stack.

A short scoping call, then a written plan for your MIDs.

Aplică acum

Questions about 3DS fără fricțiune

Ce înseamnă 3DS fără fricțiune?

3DS fără fricțiune se referă la procesele de autentificare 3D Secure în care clientul nu este provocat să introducă o parolă sau un cod. Motorul de decizie evaluează riscul tranzacției în fundal, permițând majorității tranzacțiilor să continue fără interacțiunea clientului, îmbunătățind conversia.

Cum îmbunătățește 3DS fără fricțiune conversia?

Prin eliminarea pașilor inutili din procesul de finalizare a comenzii, 3DS fără fricțiune reduce șansele ca clienții să-și abandoneze achiziția. Clienții experimentează un flux de tranzacție mai fluid, ducând la rate de finalizare mai mari în comparație cu provocările 3D Secure tradiționale.

3DS fără fricțiune este conform cu PSD2?

Da, 3DS fără fricțiune este conform cu cerințele PSD2 Strong Customer Authentication (SCA). Utilizează o analiză bazată pe riscuri pentru a determina când o tranzacție poate fi scutită de provocarea explicită a clientului, oferind în același timp protocoalele de securitate necesare.

What data elements help increase the chances of a frictionless result?

Issuers look for consistency and low-risk signals. Key elements include the cardholder's email address, billing and shipping address match, historical transaction frequency, and device information.

Including the 'prior authentication' data for returning customers can also increase the likelihood of a frictionless outcome.

The more valid data the merchant provides to the issuer's ACS, the higher the accuracy of the risk assessment, which generally leads to a higher proportion of frictionless responses from the issuer.

Can a merchant force a frictionless flow for all transactions?

A merchant can request a frictionless flow or suggest an exemption, but the final decision rests with the issuer's Access Control Server.

If an issuer determines that a transaction is too risky or if a regulator mandates a challenge for a specific transaction type, they will ignore the merchant's preference and initiate a challenge.

Merchants should use an intelligent strategy to request exemptions only when appropriate to avoid high decline rates or 'soft-declines' that require a 3DS retry.

Why do some frictionless 3DS attempts still result in a payment decline?

3DS is an authentication step, not an authorisation step. A successful frictionless 3DS result only confirms the identity of the cardholder or the validity of the data.

The subsequent authorisation request might still be declined by the issuer for reasons such as insufficient funds, expired card status, or suspected fraud unrelated to the 3DS process itself.

Successful authentication is a prerequisite for a liability shift, but it never guarantees that the financial transaction will be authorised and settled.

Începeți

Ești pregătit pentru viteză?

Spuneți-ne despre afacerea dvs. Vă vom potrivi cu partenerii de achiziție potriviți și cu ruta corectă, de obicei în mai puțin de o săptămână.

Aplică acum
Aplică acum