The Best of both Worlds: Security and User Experience

The Best of both Worlds: Security and User Experience

Ali Raza

Head Business Development US Region at Financial Software Systems

Views 345

The Best of both Worlds: Security and User Experience

16.09.2019 07:30 am

Globally e-commerce is booming. According to industry estimates digital commerce is projected to grow at a 20% CAGR to reach $5.8 trillion by 2022.  At the same time fraud losses are mounting. According to Juniper Research, global online fraud losses from e-commerce and various online commerce and banking services is expected to increase from $22 billion in 2018 to $48 billion in 2023.  This sets up a massive challenge for the industry - as consumers grow accustomed to a mobile and digital-first payments world they also need a secure ecosystem of merchants and providers, and minimal inconvenience and friction.  The same can be said for merchants – they want better security but not at the cost of a poor customer experience.  In essence no one wants to tradeoff security, convenience, and a great user experience.

This is where 3D Secure 2.0 comes in. Introduced to address ‘card-not-present’ (CNP) transactions in a world where online and mobile payments are increasingly more important, this new security specification and standard improves cardholder authentication and satisfaction and helps merchants grow sales and revenue.

Broadly speaking, 3D Secure 2.0 is an additional security layer that facilitates the exchange of 150+ data elements between the merchant and card issuer for more robust authentication, better digital security, and more complete transactions.

At FSS, we have optimized the balance between security and user experience. FSS Secure3D is a secure real-time risk-based authentication solution built on EMVCo 3DS 2.0 specifications. Using a combination of location, merchant, transactional and device related attributes, it examines rich data streams exchanged between merchants and card issuers to risk-score transactions and authenticate and validate cardholder identity.  

For high risk transactions, FSS Secure3D dynamically provisions additional verification checks such as biometric-based identification or a one-time passcode. This renders 100% challenge rates obsolete, enabling issuers and merchants to strike the right balance between security and customer convenience. A select list of high-risk scenarios supported are:

  • Implausible travel velocity (a user logs in from New York, within 10 minutes of logging in from Mumbai, India)
  • Repeated log in attempts by same device at multiple sites within a brief time span
  • A mismatch between the user’s home and the shipping addresses
  • Merchant risk score based on business category, transaction patterns, chargeback volumes, and refund history
  • Transactions originating from high-risk countries – and from cancelled cards
  • Suspicious combinations of computer locale settings (e.g., a browser’s locale set to the US with the OS locale set to an Asian country and a device’s IP address physically located in Latin America)

Across Europe, Africa, Middle East, and Asia, FSS Secure3D As-a-Service offering has enabled banks, card issuers, merchants, and processors to efficiently address security, risk-assessment, interchange and regulatory compliance, and reporting. Card issuers and merchants can accurately detect fraud patterns and make better informed authentication decisions without inconveniencing cardholders.

3D Secure 2.0 is a win-win offering for the industry. Card issuers can make smarter decisions through risk-based authentication using contextual transaction data and the merchant’s and cardholder’s risk profiles. Ultimately this leads to more complete digital commerce transactions, more satisfied cardholders, higher merchant sales, and lower fraud losses.  

Latest blogs

Ian Pollard Signavio

Are traditional institutions achieving operational excellence?

Traditional banks are under pressure from regulators and customers to provide a seamless customer experience. The benefits and innovations offered by new digital challenger banks are attractive, with consumers making the switch from traditional Read more »

Heiko Stuber SIX

SFTR: an overnight regulatory reporting headache ten years in the making

Waiting ages for a major regulation to come along, and as soon as it arrives another new rule quickly follows. Before the industry has a chance to fully iron out all the post-MiFID II wrinkles, another regulation comes along. This time, compliance Read more »

Laura Timms MHR Analytics

Finance transformation with Analytics

Finance transformation with analytics   Finance transformation is all about improving the overall value that finance provides, but with finance teams under increasing pressure to do more with less, this is something that is becoming increasingly Read more »

Deborah O'Neill Oliver Wyman

Why Robots & AI Will Never Rule Banking

Around the UK, alarm is growing from a belief that robots are taking away jobs. This fear is misplaced. From the steam-powered cotton mills of the industrial revolution to the rise of ATMs in the 1970s, there is little evidence to support the theory Read more »

Robin Singh Koinly.io

What Crypto Investors Should Be Doing To Minimize Their Taxes

Crypto taxes can be heavy on the pocket; especially when you aren’t prepared for them. Since there isn’t too much awareness around crypto taxes yet, most of us tend to end up with a heavy crypto tax liability come tax season. However, in the past Read more »

Related Blogs

Alan Stewart-Brown Opengear

Security Challenges for Financial Institutions – How Smart Out-of-Band (OOB) Management Keeps Networks Up and Running

Information technology and telecommunications are fundamental to service delivery in financial institutions today. Firms are increasingly reliant on IT networks to deliver core services but this can leave them vulnerable to ever-expanding security Read more »

Jason Tooley Veridium

Retailers Focus on Security to Avoid Becoming Another High Street Casualty

There is a consistent pattern of disruption in most industries, and surviving in the face of this rising tide means embracing the change, not fighting it. 68 per cent of c-level executives expect their industry to be significantly disrupted by new Read more »

Paul Hampton Thales

Going back to basics will solve a security headache for financial firms

With reports of new data breaches hitting the news every day, you might be surprised to hear that spending on cyber-security is at an all-time high. However, as these attacks become more sophisticated, much of this spend has been focused on Read more »

Arne Uppheim Avast Software

Password Advice

How easy is it for cyber criminals to get past weak passwords? How do they do that? ‘Brute force attacks’ are a common tactic used by cyber-criminals. These attacks use automated software to guess as many combinations as quickly as possible. Short Read more »

Daniel Follenfant NTT Security

WhatsApp Hack Comment

The hacking of WhatsApp’s messaging service is a classic example of a Buffer overflow attack. Buffer overflows aren’t new, but you don’t often see them these days and this attack is particularly clever because it uses this flaw to gain access to a Read more »

Magazine
ALL
Free Newsletter Sign-up
+44 (0) 208 819 32 53 +44 (0) 173 261 71 47
Download Our Mobile App
Financial It Youtube channel