3D Secure

3D Secure is a protocol designed to be an additional security layer for online credit and debit card transactions offered to customers as the Verified by Visa service and adopted by MasterCard under the name MasterCard SecureCode.

MasterCard SecureCode

Service was developed with the intention of improving the security of Internet payments adding a password-based authentication step. A transaction using Verified by Visa or MasterCard SecureCode will initiate a redirect to the website of the card issuing bank to authorize the transaction.

Verified By Visa

Why 3D Secure service is needed?

3D Secure allows a card holder to authenticate himself while making an online payment. It allows 3 domains to work elegantly together.

Domain 1: The card holder has the piece of mind that his card is not used without his authorization.

Domain 2: Merchants are protected from fraud and can provide the product and service without delay or extra costs.

Domain 3: Banks see that the transaction has been authenticated and are more likely to approve the transaction, to the convenience of the card holder.

How to sign up for 3D Secure service?

At the time of a first purchase at a participating online merchant, a customer is prompted to activate 3D Secure for his or her debit or credit card.

This service is compulsory for CEB customers and purchase may not be completed without its activation.

How much does it cost?

This service is free of charge (including the SMS message containing the authorization key / password).

How does 3D Secure protect customers from card fraud?

On participating sites, after completing the merchant’s checkout process, the customer is asked to provide a password which is a one-time password only good for one purchase. Password is texted to the mobile phone number that customer filled in an application form.

The customer is either redirected to the issuing bank’s website for authorization, or kept within the merchant’s own checkout process through a frame.

Payment will be authorized upon successful entry of the password.

How does it work?

  1. customers enter their card details;
  2. customers enter their special one-time password texted to the mobile phone number in a password input field
    NOTE: one-time password is valid for a period of 5 minutes;
  3. after they enter the password, it is verified at Visa or MasterCard and the transaction is completed!

What do customers do if they have not received a text message with the password?

  • try again
  • make sure that an actual mobile phone number has been provided to a bank
  • make sure that SIM-card space is enough for SMS receiving
  • make sure that account is not blocked and tariff doesn’t prohibit SMS receiving

Can customers make purchases at online stores other than Verified by Visa / MasterCard SecureCode participating merchants?

Yes, but such transactions will not have the added protection of 3D Secure.