In August 2018 EMVCo officially released an updated version of the EMV 3DS protocol that has the industry buzzing about 3-D secure payment options. EMV 3DS helps prevent unauthorized card not present transactions and protects merchants from CNP fraud. The new specification reflects current and future market requirements for:

  • Risk based authentication (Up to 95% authentication rate)

  • Acceptance of tokens (Pass tokens instead of the full credit card number) 

  • 3DS Sever allows for out of band authentication (not bound to browser)

  • App based EMV 3DS authentication

  • Fewer steps for authentication

  • Frictionless customer experience with chargeback protection

  • Biometric authentication to meet strong customer authentication requirements

  • 3-D Secure integration with digital wallets

  • Recurring transactions

  • PSD2 Compliance (The EU's PSD2 regulation requires SCA and EMV 3DS provides SCA)

Issuers will have access to over 150 data parameters - 10 times that of the original version of the protocol. 3DS 2.0 will have 41 required data points and over 100 optional points the merchant can choose to send to the issuer. This allows issuers to use risk based authentication (RBA) to give each transaction a score based on the level of risk. RBA will allow for 95% of transactions to authenticate via the 3DS server without prompting the consumer for additional information. Risk based authentication is essential to ensure chargeback protection without friction or false declines.


In the event that a transaction cannot be authenticated with RBA (roughly 5% of transactions) PAAY 3DS Server gives merchants the option either A.) close out the 3DS request allowing for an entirely frictionless customer experience or B.) Prompt the consumer for additional verification to ensure the merchant is protected.

© 2019 PAAY. All rights reserved.  |  5 Hanover Square, Suite #2102 , New York, NY,  10004

Get in Touch
  • LinkedIn Social Icon
  • Twitter Social Icon
  • Facebook Social Icon