New regulations will require payments to have two factors of authentication
London, 5th July 2018 – With new EU regulations coming into place next September, Mastercard is predicting a significant increase in the use of biometric technology to authenticate who is paying.
With regards to card payments, currently just 1-2% per cent of online transactions require cardholder authentication to complete a transaction (mostly likely using a password), but this is set to rise to up to 25% or 1 in 4 payments from next autumn.
The European rules aim to tackle online fraud, by increasing the number of transactions subject to two factors of authentication by the payer, known as “Strong Customer Authentication” (SCA).
Authentication for online payments and account access will be based on the use of two or more different factors in the future:
This will mostly impact card payments made over the internet – be it a desktop or mobile purchase. It will also apply to some contactless transactions, as a periodic check to ensure the card is being used by its rightful owner. However, in store chip and pin transactions are already complaint and use two factors.
Although the heightened security measures are designed to protect consumers and businesses from being defrauded, Mastercard is working with banks and the rest of the industry to ensure they are implemented without ‘disrupting’ the convenience of payments for consumers.
Ajay Bhalla, President Global Enterprise Risk and Security, Mastercard said: “The use of passwords to authenticate someone is woefully outdated, with consumers forgetting them and retailers facing abandoned shopping baskets. In payments technology this is something we’re closing in on as we move from cash to card, password to thumbprint, and beyond to innovative technologies such as artificial intelligence. It’s far easier to authenticate with a thumbprint or a selfie, and it’s safer too.”
Mastercard has been leading the advancement of biometric technology in payments for years with a focus on improving both consumer experience and security online and offline.
Identity Check is one such example. This is an authentication solution that enables individuals to use biometric identifiers, such as fingerprint, iris and facial recognition to verify their identity using a mobile device during online shopping and banking activities. This solution dramatically speeds up the digital checkout time, improves security and reduces cart abandonment rates.
Mastercard is also testing a next generation biometric payment card, with an in-built fingerprint sensor. The card is being piloted in South Africa and can be used to verify in-store purchases without the need to upgrade existing payment terminals.
With this approach, Mastercard will help banks not only to comply with requirements set out in the new PSD2 legislation, but also to go further in optimising the checkout experience of their customers.
-ENDS-
About Mastercard
Mastercard (NYSE: MA), www.mastercard.com, is a technology company in the global payments industry. We operate the world’s fastest payments processing network, connecting consumers, financial institutions, merchants, governments and businesses in more than 210 countries and territories. Mastercard products and solutions make everyday commerce activities – such as shopping, traveling, running a business and managing finances – easier, more secure and more efficient for everyone. Follow us on Twitter @MastercardNews, join the discussion on the Beyond the Transaction Blog and subscribe for the latest news on the Engagement Bureau.
Mastercard Communications Contacts:
Adam Keal James Thorpe
+44 (0)20 7557 5182 +44 7807 378 265 adam.keal@mastercard.com James.thorpe@mastercard.com
Log in to access complimentary passes or discounts and access exclusive content as part of your membership. An auto-login link will be sent directly to your email.
We use an auto-login link to ensure optimum security for your members hub. Simply enter your professional work e-mail address into the input area and you’ll receive a link to directly access your account.
Instead of using passwords, we e-mail you a link to log in to the site. This allows us to automatically verify you and apply member benefits based on your e-mail domain name.
Please click the button below which relates to the issue you’re having.
Sometimes our e-mails end up in spam. Make sure to check your spam folder for e-mails from The Payments Association
Most modern e-mail clients now separate e-mails into different tabs. For example, Outlook has an “Other” tab, and Gmail has tabs for different types of e-mails, such as promotional.
For security reasons the link will expire after 60 minutes. Try submitting the login form again and wait a few seconds for the e-mail to arrive.
The link will only work one time – once it’s been clicked, the link won’t log you in again. Instead, you’ll need to go back to the login screen and generate a new link.
Make sure you’re clicking the link on the most recent e-mail that’s been sent to you. We recommend deleting the e-mail once you’ve clicked the link.
Some security systems will automatically click on links in e-mails to check for phishing, malware, viruses and other malicious threats. If these have been clicked, it won’t work when you try to click on the link.
For security reasons, e-mail address changes can only be complete by your Member Engagement Manager. Please contact the team directly for further help.
