About card payments
General information about card payments
processes all major cards and currencies worldwide. Card data is protected against unauthorised access by TLS encryption. Additional security functions are integrated fraud prevention and risk management. Our standardized settlement files guarantee a straightforward reconciliation processes in your accounting.
Visa Secure and MasterCard SecureCode secure your payment claim by password validation if a customer disputes the payment later. American Express SafeKey also uses the 3-D Secure technology, which means that the card holder must confirm their identity with a password.
Transaction processing can be made via standard form, via customized forms, via server-to-server-connection or via batch transfer. Likewise
can process transactions from stationary terminals.
Using the card form provides several advantages:
- Merchants can bypass the costly PCI-security authorisation
- The programming of 3-D Secure with forms is much easier and quicker than via Server-to-Server connection
|
Process of 3-D Secure payments
MasterCard SecureCode (UCAF), Visa Secure, Diners ProtectBuy, JCB J/Secure and American Express SafeKey are authentication methods which verify the identity of the card holder before making the payment. The name 3-D Secure used by technicians describes only the protocol. The correct brand names are Visa Secure, MasterCard SecureCode, SafeKey, ProtectBuy and J/Secure.
Merchants benefit from authentication with 3-D Secure because the card schemes provide a liability shift: If you are using Visa Secure, MasterCard SecureCode, Diners ProtectBuy, JCB-Card J/Secure or American Express SafeKey, the burdon of proof and thereby generally the liability is shifted from the merchant to the card issuing bank, should the customer dispute the payment. Irrespective of whether the card holder actually uses the authentication you obtain a very high protection against payment defaults / chargebacks in case the customer states they have not authorised the card payment. Your Acquirer will be able to discuss the details of 3-D Secure and the cover that it provides.
From a technical perspective 3-D Secure is not a payment method but an authentication process which precedes the payment: Once the credit card data has been entered, checks the identity of the card holder and does not process the payment until after the authentication.
For further steps it is crucial if the credit card connection is made via form interface or via Server-to-Server-connection. In the first case the form assumes the further authentication process, with Server-to-Server-connection the merchant has to manage the authentication through a separate interface.
Notice: Please make sure to review our EMV 3D Secure Specification to integrate according to the newest standards.
| Please notice that in case of Fallback to 3-D Secure 1.0 the URLSuccess or URLFailure is called with GET. Therefore your systems should be able to receive parameters both via GET and via POST. |
Process of a transaction with 3-D Secure via form interface
Simplified Sequence Diagram
If the password is correct obtains confirmation in the form of a signature. Only after confirmation does
start the payment and send the transaction with the signature to the Acquiring Bank.
Details on the integration can be found here: Credit Card Form (paySSL) |
Process of a transaction with 3-D Secure via Server-to-Server-connection
Details on the integration can be found here: Server-2-Server Integration |
Credit card brands
A list of all supported card schemes can be found here: Card schemes
Integration
Please find here further information for
Credit card - common form
Detailed information of integration via Payment forms
Card processing - common Server-to-Server
Detailed information of integration via Server-to-Server API
Card processing - Capture / Credit / Reversal / PayNow / Batch
Detailed information how to integrate further processes
EMV 3-D Secure
Information and integration of EMV 3-D Secure / 3-D Secure 2.x