Nowadays the explosive growth of e-commerce services has made the protection of online
payments crucial for the business of a card issuer. In this scenario, a critical success
factor is the availability of 3DS authentication services that are trustworthy, secure
and able to not compromise the quality of the shopping experience of the Customers.
OpenPay™ ACS is the State-of-the-Art 3DS authentication technology designed by
Opentech to meet these needs in a distinctive way.
OpenPay™ ACS is an EMVco and Mastercard ID Check certified solution that provides
full support for 3DS 1.0 and 2.x authentication protocols by taking care of the whole
3DS authentication process: receiving 3D Secure messages, processing the messages,
authenticating the cardholder, generating the authentication value.
The solution is available in SaaS mode so as to require minimal integration efforts for
the issuers while ensuring a quick time to market. This service model makes the platform
completely scalable, providing reliability and service continuity also in case of
unexpected or predictable peak loads (e.g. Black Friday or Christmas shopping).
OpenPay™ ACS provides the end-users with an unparalleled online purchase
experience in terms of security, convenience, and ease of use. The solution includes
different authentication methods with the aim of both satisfying the specific needs of
different market segments and perfectly balancing security of the payments with user
experience.
Out of Band Authentication (OBA). The Out of Band Authentication turns
the smartphone of the users into a signing device. Regardless of the purchase channel
used, during the payment authentication the users will receive a push notification on
their device containing a summary of the pending operation to be authenticated by
entering a secret PIN or, even more simply, by carrying out a biometric recognition
(OpenPay™ ACS supports both face recognition and fingerprint recognition).
One Time Password (OTP). One Time Password is the traditional way to
authenticate an operation. Users receive an OTP linked with the pending payment on their
registered phone numbers; in order to authenticate they just have to enter the received
code. OpenPay™ ACS supports the use of a dedicated password in conjunction with
the OTP to meet the PSD2 requirements.
Risk Based Authentication (RBA). The OpenPay™ ACS authentication
process can be dynamically modulated by evaluating the score of each transaction based
on the transaction risk. The OpenPay™ ACS can be integrated with the Mastercard
risk engine or with a different engine provided by the Issuer. In this way it is
possible to guarantee an optimal online shopping experience while avoiding to bother
users in case of low-risk transactions.
Merchant Whitelisting. The OpenPay™ ACS provides cardholders with
the possibility to whitelist the merchants they trust. This approach guarantees the
cardholders a frictionless payment experience with the merchants they use more
frequently without compromises on security.
OpenPay™ ACS is a fully compliant PSD2 solution that perfectly balances the strict
security requirements of the new Payment Service Directive with ease of use and
effectiveness. This approach allowed OpenPay™ ACS to reach a remarkable approval
rate higher than 90%.
The OpenPay™ ACS platform includes an Administration Portal for Customer Support
and Marketing Analysis. Thanks to this powerful tool, information about the 3DS
authentications performed, the status of each operation and aggregate statistics about
the usage and the performance of the service can be accessed at any time.