New regulations will require payments to have two factors of authentication
Dublin, September 2018 – With new EU regulations coming into place next September 14th, Mastercard is predicting a significant increase in the use of biometric technology to authenticate who is paying.
With regards to card payments, currently just 1-2% of online transactions in Ireland require cardholder authentication, through 3D Secure, to complete a transaction (most likely using a password), but this is set to rise to up to 25% or 1 in 4 payments from next autumn.
The European rules aim to tackle online fraud, by increasing the number of transactions subject to two factors of authentication by the payer, known as “Strong Customer Authentication” (SCA).
Authentication for online payments and account access will be based on the use of two or more different factors in the future:
- Something you know, such as a password
- Something you have, such as a phone, or card
- Something you are, such as a fingerprint
This will mostly impact card payments made over the internet – be it a desktop or mobile purchase. It will also apply to some contactless transactions, as a periodic check to ensure the card is being used by its rightful owner. However, in-store chip and pin transactions are already compliant and use two factors.
Although the heightened security measures are designed to protect consumers and retailers from being defrauded, Mastercard is working with banks and the rest of the industry to ensure they are implemented without ‘disrupting’ the convenience of payments for consumers.
Sonya Geelon, Country Manager, Mastercard in Ireland said: “The use of passwords to authenticate someone is significantly outdated, with people forgetting them and retailers facing abandoned shopping baskets. In payments technology this is something we’re closing in on as we move from cash to card, password to thumbprint, and beyond to innovative technologies such as artificial intelligence. It’s far easier to authenticate with a thumbprint or a selfie, and it’s safer too.”
Mastercard has been leading the advancement of biometric technology in payments for years with a focus on improving both consumer experience and security online and offline.
Identity Check is one such example. This is an authentication solution that enables individuals to use biometric identifiers, such as fingerprint, iris and facial recognition to verify their identity using a mobile device during online shopping and banking activities. This solution dramatically speeds up the digital checkout time, improves security and reduces cart abandonment rates.
With this approach, Mastercard will help banks not only to comply with requirements set out in the new PSD2 legislation, but also to go further in optimising the checkout experience of their customers.