That is what the Strong Customer Authentication (SCA) is for.
Simply put, SCA is the rules that payment systems must follow to authenticate the user. In order to be able to make payments, the banks integrate additional authentication into the ordering process.
If we take the example of a regular Internet acquiring, previously, the payment was made after entering the bank card data and a one-time password. Now, another parameter will be added to this chain, which increases the security of the transaction. What could it be?
According to the SCA, when authenticating a customer, the banks must ask for two of the three factors:
- The information that you know (password, security question or a PIN code).
- The information on what you own (smartphone, smartwatch or other devices).
- The information on yourself (fingerprint or facial biometrics).
It is important to note that the SCA will not affect payments in regular stores, you can pay for products in the nearest store without additional verifications. For online card payments, these requirements apply to the transactions when the cardholder's bank is located in the European Economic Area (EEA).