|
3-D Secure is the technology of cardholder authentication while making remote payments on the Internet. In comparison to the other earlier approaches, personality identification is performed on-line.
The key word which characterizes the technology is security. The technology not only guarantees security of customer’s data but to a greater extent helps to save financial assets of the banks, which are the participants of the payments. The main factors which guarantee 3-D Secure are:
- On-line cardholder personality identification. After entering the card number at the payment page of the e-shop, the customer is redirected to the server of his issuing bank. The bank functions as a personality identifier of the card-holder. As a rule, the password which is known only by the bank and the cardholder is used.
- Verification results protection. The issuing bank replies with the results of identification. To protect the information from unauthorized changes, the issuer uses digital signature.
- User confidential information protection. For client’s private information input, e.g., card number, payment server protected pages are used. All entered information is saved at the payment server and the recipient of the payment (e-shop) has no access to this information, what makes it most secure form its loss or theft.
It is evident, that the technology not only secures payment transaction but also divides the risks of the participants by their task sharing:
- Issuer identifies the cardholder as it has the necessary information about the client;
- Acquirer connects with the issuer authentication system using special payment system resources.
3-D Secure technology was offered by the Visa International Association for improvement of the quality of on-line transactions. As a result, increase in e-commerce turnover. But it is not the only goal of 3-D Secure promotion. The technology has perspectives for universal commerce, i.e., to hold commercial transactions from any device, at any time, from any place. At present, authentication may be made using cash register, personal computer, mobile phone.
In 2004 Intervale obtained licence from Visa International Service Association Corporation for development using 3-D Secure technology. This standard of secure remote transactions is applied in all company’s e-commerce projects. As an official partner of Visa Association the company developed such important technological components as Access Control Server (ACS) and Merchant Plug-in (MPI) which have been certified by Visa for 3-D Secure standard compatibility. The Mobile Bank System based on these components ensures the highest level of security. The information which is transmitted from and to the clients of the system is surely protected from unauthorized intervention. Additional ways of authentication such as mobile phone and PIN-code makes remote transactions more secure in comparison to the standard way of making transactions on the Internet.
Based on our solutions certified by Visa, the company developed Payguide system, which is used as an e-commerce platform. Use of 3-D Secure international specification guarantees security of all Internet payments for all users in any e-shop. Using Payguide, the shops don’t need to perform such high-tech stages as 3-D Secure client authentication and authorization process. Payguide provides Payment Page Server (PPS) component for the shop to transfer control after the client’s order setup.
So the choice of 3-D Secure as a base technology allowed Intervale to develop full-scale solutions which guarantee maximum security of Internet payments at present.
|
