3DS / Strong Customer Authentication
3D Secure (3DS) is an authentication protocol that adds an extra layer of protection to card transactions. It helps confirm that the person making the purchase is the legitimate cardholder, reducing the risk of fraud for both businesses and customers. When 3DS is triggered, the issuing bank may prompt the cardholder to authenticate using methods such as a password, a one-time code sent to their mobile device, or biometric verification. Many customers recognize this experience through familiar card network brands like Visa Secure, Mastercard Identity Check, or American Express SafeKey.
Strong Customer Authentication (SCA), introduced under PSD2 in the European Economic Area and reflected in similar regulations in the UK, India, Japan, and Australia, may require the use of 3DS for certain card payments. In other regions, 3DS remains optional but can still be used strategically to help reduce fraud.
Perform 3D Secure (3DS) via the PSP that is processing the transaction
Run 3D Secure (3DS) via any 3DS server (Juspay, Netcetra, 3DSecure.io) while processing the subsequent payment on a third party gateway
Process payments via Hyperswitch when 3DS Secure (3DS) runs outside Hyperswitch
Use Rules and SCA exemptions to reduce cardholder friction on eligible transactions
Last updated
Was this helpful?