The Best of both Worlds: Security and User Experience

The Best of both Worlds: Security and User Experience

Ali Raza

Head Business Development US Region at Financial Software Systems

Views 980

The Best of both Worlds: Security and User Experience

16.09.2019 07:30 am

Globally e-commerce is booming. According to industry estimates digital commerce is projected to grow at a 20% CAGR to reach $5.8 trillion by 2022.  At the same time fraud losses are mounting. According to Juniper Research, global online fraud losses from e-commerce and various online commerce and banking services is expected to increase from $22 billion in 2018 to $48 billion in 2023.  This sets up a massive challenge for the industry - as consumers grow accustomed to a mobile and digital-first payments world they also need a secure ecosystem of merchants and providers, and minimal inconvenience and friction.  The same can be said for merchants – they want better security but not at the cost of a poor customer experience.  In essence no one wants to tradeoff security, convenience, and a great user experience.

This is where 3D Secure 2.0 comes in. Introduced to address ‘card-not-present’ (CNP) transactions in a world where online and mobile payments are increasingly more important, this new security specification and standard improves cardholder authentication and satisfaction and helps merchants grow sales and revenue.

Broadly speaking, 3D Secure 2.0 is an additional security layer that facilitates the exchange of 150+ data elements between the merchant and card issuer for more robust authentication, better digital security, and more complete transactions.

At FSS, we have optimized the balance between security and user experience. FSS Secure3D is a secure real-time risk-based authentication solution built on EMVCo 3DS 2.0 specifications. Using a combination of location, merchant, transactional and device related attributes, it examines rich data streams exchanged between merchants and card issuers to risk-score transactions and authenticate and validate cardholder identity.  

For high risk transactions, FSS Secure3D dynamically provisions additional verification checks such as biometric-based identification or a one-time passcode. This renders 100% challenge rates obsolete, enabling issuers and merchants to strike the right balance between security and customer convenience. A select list of high-risk scenarios supported are:

  • Implausible travel velocity (a user logs in from New York, within 10 minutes of logging in from Mumbai, India)
  • Repeated log in attempts by same device at multiple sites within a brief time span
  • A mismatch between the user’s home and the shipping addresses
  • Merchant risk score based on business category, transaction patterns, chargeback volumes, and refund history
  • Transactions originating from high-risk countries – and from cancelled cards
  • Suspicious combinations of computer locale settings (e.g., a browser’s locale set to the US with the OS locale set to an Asian country and a device’s IP address physically located in Latin America)

Across Europe, Africa, Middle East, and Asia, FSS Secure3D As-a-Service offering has enabled banks, card issuers, merchants, and processors to efficiently address security, risk-assessment, interchange and regulatory compliance, and reporting. Card issuers and merchants can accurately detect fraud patterns and make better informed authentication decisions without inconveniencing cardholders.

3D Secure 2.0 is a win-win offering for the industry. Card issuers can make smarter decisions through risk-based authentication using contextual transaction data and the merchant’s and cardholder’s risk profiles. Ultimately this leads to more complete digital commerce transactions, more satisfied cardholders, higher merchant sales, and lower fraud losses.  

Latest blogs

Thomas Pintelon Capilever

Credit origination - A lot of innovation on the horizon

While consumer credits are becoming more automated and user-friendly to request, all other credits are often still very manual and labor intensive to originate. In this (relatively long) blog I will try to give a description of the (potentially Read more »

Kelly Kearsley

Time Card Theft is a Big Problem. Here's How to Stop It.

Trust is at the core of every employer-employee relationship. You trust your people to do their jobs, and they trust you to compensate them for their work. Most of the time, it works. However, there's always the person looking to bend the rules or Read more »

Daria Afanasyeva UTP Merchant Services Ltd

Cybersecurity – Online payments are getting more secure

Ever since we've been able to buy anything we need with just a click of a button on our laptops or phones, online sales have been consistently increasing each year. Just last year, the total value of UK retail sales was £394 billion, with an average Read more »

James McGivern Cashfac

Keeping Honest Payment Service Institutions Honest

Following the collapse of Wirecard, James McGivern, Head of NBFI at Cashfac, reinforces the need for operational accounting and reconciliation in eMoney and Payment Service Providers The other day an ex-colleague reminded me that we had tried to Read more »

Orion Hindawi Tanium

New Salesforce Partnership and Investment in Tanium Reimagines Employee Service Management in an Increasingly Remote-Working World

We are excited to announce a strategic partnership with Salesforce, supported by a new round of funding led by a strategic investment from Salesforce Ventures to reimagine employee service management, bringing the company’s post-money valuation to $ Read more »

Related Blogs

Sunil Jhamb WL Payments

Staying in control of digital payments

For the CIOs and CTOs of banks and PSPs, fraud and security are never very far from their minds. Protecting both their own organisations and their merchants from the threat of cybercrime is a truly business-critical challenge – and one in which the Read more »

Gabriel Leperlier Verizon Enterprise Solutions

Why is Payment Security Compliance Declining with only 1 in 3 Companies Globally Making the Grade?

When companies are attacked, personal and financial customer information from payment card data is often the target. The Payment Card Industry Data Security Standard (PCI DSS) was designed to help protect payment data from the point of purchase and Read more »

Alan Stewart-Brown Opengear

Security Challenges for Financial Institutions – How Smart Out-of-Band (OOB) Management Keeps Networks Up and Running

Information technology and telecommunications are fundamental to service delivery in financial institutions today. Firms are increasingly reliant on IT networks to deliver core services but this can leave them vulnerable to ever-expanding security Read more »

Jason Tooley Veridium

Retailers Focus on Security to Avoid Becoming Another High Street Casualty

There is a consistent pattern of disruption in most industries, and surviving in the face of this rising tide means embracing the change, not fighting it. 68 per cent of c-level executives expect their industry to be significantly disrupted by new Read more »

Paul Hampton Thales

Going back to basics will solve a security headache for financial firms

With reports of new data breaches hitting the news every day, you might be surprised to hear that spending on cyber-security is at an all-time high. However, as these attacks become more sophisticated, much of this spend has been focused on Read more »

Free Newsletter Sign-up
+44 (0) 208 819 32 53 +44 (0) 173 261 71 47
Download Our Mobile App
Financial It Youtube channel