Checkout icon

3D Secure 2 authentication

Integrate 3D Secure 2 authentication.

Adyen Authentication Engine

Implementing 3D Secure 2 with Adyen lets you benefit from our Authentication Engine that reduces regulatory complexity and optimizes authentication success.

3D Secure 2 is an authentication protocol that provides an additional layer of verification for card-not-present (CNP) transactions. We recommend that you use it to comply with authentication regulations for online payments such as PSD2 SCA that requires strong customer authentication to make online payments in the European Economic Area, and to use liability shift rules.

Implement 3D Secure 2

We support two 3D Secure 2 authentication implementations:

  • Native: The card issuer performs the authentication within your website or mobile app using passive, biometric, and two-factor authentication approaches. For more information about the shopper experience, refer to 3D Secure 2 authentication flows.

  • Redirect: Shoppers are redirected to the card issuer's site to provide additional authentication data, for example a password or an SMS verification code. The redirection might lead to lower conversion rates due to technical errors during the redirection, or shoppers dropping out of the authentication process.

If your integration uses the Sessions flow, you do not need additional configuration to support 3D Secure 2. The Sessions flow integration has built-in support for 3D Secure 2.

If you have an Advanced flow integration with Drop-in/Components, or an API-only integration, follow our guides to integrate with 3D Secure 2. For API-only integrations, follow the Components guides to integrate with the 3D Secure 2 or the Action Component.

To build a Native 3D Secure 2 integration with Checkout API v46 or earlier, follow the integration guide for earlier versions.

3D Secure 2 authentication flows

When you have implemented native 3D Secure, a transaction that qualifies for 3D Secure 2 can go through either a frictionless flow or a challenge flow, depending on the issuer's requirements.

Frictionless flow

In a frictionless flow, the acquirer, issuer, and card scheme exchange all necessary information in the background through passive authentication using the shopper's device fingerprint. The transaction is completed without further shopper interaction.

Challenge flow

In a challenge flow, the issuer requires additional shopper interaction, either through biometrics, two-factor authentication, or similar methods based on SCA authentication factors.

Other 3D Secure flows

Besides the standard 3D Secure 2 implementation options, there are additional 3D Secure flows that you can use with or without an existing 3D Secure 2 integration.

See also