SlideShare a Scribd company logo

Biometrics for Payment Authentication

FIDO Alliance
FIDO Alliance

This document discusses using biometrics for payment authentication. It introduces 3-D Secure protocols for cardholder authentication during e-commerce transactions. Sample biometric use cases are presented, including simple app login, step-up authentication for online transactions, and step-up authentication for account changes. The Visa ID Intelligence Biometrics service is described as a one-stop solution for biometric authentication that is FIDO Alliance certified. Out-of-band step-up authentication is proposed as a way to streamline 3-D Secure using biometrics on a mobile device.

Mobile
1 of 29
Download to read offline
Biometrics for Payment Authentication September 25, 2018
©2018 Visa. All rights reserved.2 1. Introduction to 3-D Secure 2. Sample biometric authentication use cases 3. Visa ID Intelligence Biometrics service 4. Biometrics for out-of-band payment authentication
©2018 Visa. All rights reserved.3 Introduction to 3-D Secure
©2018 Visa. All rights reserved.4 3-D Secure (3DS) is a messaging protocol enabling authentication of a cardholder for e-commerce transactions with the issuer prior to authorization 3-D Secure ? Authentication with 3-D Secure Authentication verifies the identity of the cardholder ? Authorization Authentication with 3DS 2.0 complements authorization to strengthen issuer confidence in approving the transaction The issuer collaborates with the merchant to authenticate the cardholder’s identity before the authorization occurs
©2018 Visa. All rights reserved.5 3DS 2.0 protocol enhances issuer risk-based authentication capabilities and improves the user experience across multiple form factors and use cases 3-D Secure 2.0 Improvements Improved User Experience 3-D Secure 1.0 3-D Secure 2.0 • Capable of integration with the merchant experience X limited X expanded • Removal of Activation During Shopping X • Reduce the number of messages required X More Data for Authentication and Security 3-D Secure 1.0 3-D Secure 2.0 • Payment-related data X limited X expanded • Non-payment related data X • Support for new and future authentication methods X Flexible Device and Channel Support 3-D Secure 1.0 3-D Secure 2.0 • Browser-based authentication support X X expanded • Mobile/application-based authentication support X • Digital Wallet, Non-payment-based authentication X • Support for future channels and form factors (i.e. MOTO) X
©2018 Visa. All rights reserved.6 Sample biometric authentication use cases
©2018 Visa. All rights reserved.7 Offer customers choice on how they authenticate themselves through face, fingerprint, and voice while helping to reduce friction associated with PINs and passwords Reduce friction during e-commerce shopping experiences by helping customers to authenticate themselves with their preferred biometrics via your mobile app Simplify authentication and help reduce exposure to fraud across your channels by requiring biometric authentication in response to a push request to your mobile app on the customer’s device Sample Biometric Authentication Use Cases Simple App Login Step-up authentication for online transactions Step-up authentication for account changes
©2018 Visa. All rights reserved.8 Offer customers choice on how they authenticate themselves through face, fingerprint, and voice while helping to reduce friction associated with PINs and passwords Designed to reduce friction during e-commerce shopping experiences by helping customers to authenticate themselves with their preferred supported biometrics via your mobile app Simplify authentication and help reduce exposure to fraud across your channels by requiring biometric authentication in response to a push request to your mobile app on the customer’s device Simple App Login Step-up authentication for online transactions Step-up authentication for account changes Sample Biometric Authentication Use Cases
©2018 Visa. All rights reserved.9 73% of global consumers surveyed would be comfortable using biometrics to make a payment1 Source: Research conducted by Visa from Sept-Nov 2017, among over 10,000 consumers who use at least one credit card, debit card, and/or mobile pay. Looked at Q18 – To what extent are you/would you be personally comfortable using each of the following payment authentication methods? Data includes summary of NET:Top 2 (Somewhat/Very comfortable) for Fingerprint recognition, Eye scan, Facial recognition, Voice recognition, and Vein pattern recognition. Why Biometrics? 73% Singapore 68% Canada 70% U.S. 83% Brazil 75% UAE 73% Australia 70% New Zealand 74% Japan 78% China 76% South Africa 66% France 65% Ukraine 73% S. Korea 63% Russia
©2018 Visa. All rights reserved.10 Offer customers choice on how they authenticate themselves through face, fingerprint, and voice while helping to reduce friction associated with PINs and passwords Designed to reduce friction during e-commerce shopping experiences by helping customers to authenticate themselves with their preferred supported biometrics via your mobile app Simplify authentication and help reduce exposure to fraud across your channels by requiring biometric authentication in response to a push request to your mobile app on the customer’s device Sample Biometric Authentication Use Cases Simple App Login Step-up authentication for online transactions Step-up authentication for account changes These materials and best practice recommendations are provided for informational purposes only and should not be relied upon for marketing, legal, regulatory or other advice. Recommended marketing materials should be independently evaluated in light of your specific business needs and any applicable laws and regulations. Visa is not responsible for your use of the marketing materials, best practice recommendations, or other information, including errors of any kind, contained in this document
©2018 Visa. All rights reserved.11 Visa ID Intelligence Biometrics Service
©2018 Visa. All rights reserved.12 v • One stop shopping through Visa Developer • Connect to vetted technologies selected from hundreds of service providers Financial Institutions Merchants Acquirers/ Processors Smarter Access • Streamlined contracting with Visa to enable faster time to market • Build with Visa APIs and SDKs for simplified integration Smarter Integration • Intelligently use authentication data to create elegant user experience • Apply learning from the best practices and user testing Smarter Decisions Identity Documents Device Data (coming soon) User Data Biometrics (coming soon) The Visa ID Intelligence Solution Suite of authentication services This slide is intended for illustrative purposes only. It contains depictions of a product currently in the process of deployment, and should be understood as a representation of the potential features of the fully-deployed product. The final version of this product may not contain all of the features described in this presentation. ©2018 Visa. All rights reserved.
©2018 Visa. All rights reserved.13 Highly Available Visa manages the redundancy and failover for a highly available production service FIDO Alliance Certified Server is compliant with FIDO® UAF specifications* • Compatible with certified FIDO authenticators • Allows for secure registration of FIDO authenticators to servers • Supports login and step-up use-cases Authentication Management Tools • Create and manage multiple policies for enrollment and authentication • Manage multiple applications across different platforms (iOS, Android) API and hosted server * As of this webinar Visa ID Intelligence Biometrics ©2018 Visa. All rights reserved.
©2018 Visa. All rights reserved.14 • Helps eliminate the need to build specific mobile app and server support for FIDO® UAF protocol • Helps eliminate the need to code for different devices with a hardware agnostic solution • Mobile SDKs to help enforce FIDO policies in the application • Add additional authentication capabilities such as face and voice, designed to allow customers to select their preferred biometric modality • Help verify the biometric, device, and app during each authentication event* *if user uses a biometric authenticator Android and iOS SDKs Visa ID Intelligence Biometrics Multi-factor authentication policies High risk (transfer funds) Allowed Not Allowed Silent and PinPin Low risk (view accounts) Allowed Pin Silent
©2018 Visa. All rights reserved.15 Out-of-band step-up authentication
©2018 Visa. All rights reserved.16 Streamline 3-D Secure with Biometrics Proof of concept This page is intended for illustrative purposes only. It contains depictions of a product currently in the process of deployment, and should be understood as a representation of the potential features of the fully-deployed product. The final version of this product may not contain all of the features described in this presentation. (In Progress) Place order Authenticate with Biometrics Merchant SuccessNotification opens issuer app
©2018 Visa. All rights reserved.17 Streamline 3-D Secure with Biometrics Proof of concept This page is intended for illustrative purposes only. It contains depictions of a product currently in the process of deployment, and should be understood as a representation of the potential features of the fully-deployed product. The final version of this product may not contain all of the features described in this presentation. (In Progress) Place order Authenticate with Biometrics Merchant SuccessNotification opens issuer app
©2018 Visa. All rights reserved.18 Streamline 3-D Secure with Biometrics Proof of concept This page is intended for illustrative purposes only. It contains depictions of a product currently in the process of deployment, and should be understood as a representation of the potential features of the fully-deployed product. The final version of this product may not contain all of the features described in this presentation. (In Progress) Place order Authenticate with Biometrics Merchant SuccessNotification opens issuer app
©2018 Visa. All rights reserved.19 Streamline 3-D Secure with Biometrics Proof of concept This page is intended for illustrative purposes only. It contains depictions of a product currently in the process of deployment, and should be understood as a representation of the potential features of the fully-deployed product. The final version of this product may not contain all of the features described in this presentation. (In Progress) Place order Authenticate with Biometrics Merchant SuccessNotification opens issuer app
©2018 Visa. All rights reserved.20 3DS Requestor Source: EMVCo - EMV® 3-D Secure – Protocol and Core Functions Specification version 2.0.0, October 2016 3-D Secure 2.0 Environment 3DS Client 3DS Server 3DS Requestor APIs/3DS Server APIs/Browser interaction 3DS Requestor Environment *Note: gray dashed arrows and 3DS Requestor are not part of 3DS specifications Customer shops
©2018 Visa. All rights reserved.21 Source: EMVCo - EMV® 3-D Secure – Protocol and Core Functions Specification version 2.0.0, October 2016 3-D Secure 2.0 Environment Directory Server Issuer *Note: gray dashed arrows and 3DS Requestor are not part of 3DS specifications 3DS Requestor3DS Client 3DS Server 3DS Requestor APIs/3DS Server APIs/Browser interaction 3DS Requestor Environment Customer shops Access Control Server (ACS)
©2018 Visa. All rights reserved.22 Source: EMVCo - EMV® 3-D Secure – Protocol and Core Functions Specification version 2.0.0, October 2016 3-D Secure 2.0 Environment Customer shops Directory Server Access Control Server (ACS) Issuer *Note: gray dashed arrows and 3DS Requestor are not part of 3DS specifications Challenge Request/Response 3DS Method 3DS Requestor3DS Client 3DS Server 3DS Requestor APIs/3DS Server APIs/Browser interaction 3DS Requestor Environment
©2018 Visa. All rights reserved.23 Source: EMVCo - EMV® 3-D Secure – Protocol and Core Functions Specification version 2.0.0, October 2016 Out-of-band step-up authentication Customer shops Directory Server ACS Server Challenge Request/Response 3DS Method 3DS Requestor3DS Client 3DS Server 3DS Requestor APIs/3DS Server APIs/Browser interaction 3DS Requestor Environment Issuer
©2018 Visa. All rights reserved.24 Source: EMVCo - EMV® 3-D Secure – Protocol and Core Functions Specification version 2.0.0, October 2016 Out-of-band step-up authentication Visa ID Intelligence Biometrics Customer shops Directory Server ACS Server Initiate authentication request1 Challenge Request/Response 3DS Method 3DS Requestor3DS Client 3DS Server 3DS Requestor APIs/3DS Server APIs/Browser interaction 3DS Requestor Environment Issuer
©2018 Visa. All rights reserved.25 Source: EMVCo - EMV® 3-D Secure – Protocol and Core Functions Specification version 2.0.0, October 2016 Out-of-band step-up authentication Customer shops Directory Server ACS Server Initiate authentication request1 Challenge Request/Response 3DS Method 3DS Requestor3DS Client 3DS Server 3DS Requestor APIs/3DS Server APIs/Browser interaction 3DS Requestor Environment Issuer Visa ID Intelligence Biometrics
©2018 Visa. All rights reserved.26 Source: EMVCo - EMV® 3-D Secure – Protocol and Core Functions Specification version 2.0.0, October 2016 Out-of-band step-up authentication Customer shops Directory Server ACS Server Perform authentication Initiate authentication request1 3 Challenge Request/Response 3DS Method 3DS Requestor3DS Client 3DS Server 3DS Requestor APIs/3DS Server APIs/Browser interaction 3DS Requestor Environment Issuer Visa ID Intelligence Biometrics
©2018 Visa. All rights reserved.27 Source: EMVCo - EMV® 3-D Secure – Protocol and Core Functions Specification version 2.0.0, October 2016 3-D Secure 2.0 Environment Customer shops Directory Server Access Control Server (ACS) Issuer *Note: gray dashed arrows and 3DS Requestor are not part of 3DS specifications Challenge Request/Response 3DS Method 3DS Requestor3DS Client 3DS Server 3DS Requestor APIs/3DS Server APIs/Browser interaction 3DS Requestor Environment
For more information Visa ID Intelligence www.visaidintelligence.com EMV® 3-D Secure https://www.emvco.com/emv-technologies/3d-secure/ Money 20/20 in Las Vegas from Oct 22-24, 2018 Look for the Visa kiosk in the Pavilion at the FIDO® Alliance booth #1259 All brand names, logos and/or trademarks are the property of their respective owners, are used for identification purposes only, and do not necessarily imply product endorsement or affiliation with Visa.
Biometrics for Payment Authentication

Recommended

Strong Customer Authentication & Biometrics
Strong Customer Authentication & BiometricsStrong Customer Authentication & Biometrics
Strong Customer Authentication & Biometrics
FIDO Alliance
 
Biometrics
BiometricsBiometrics
Biometrics
shweta-sharma99
 
Biometrics Technology Intresting PPT
Biometrics Technology Intresting PPT Biometrics Technology Intresting PPT
Biometrics Technology Intresting PPT
preeti tripathi
 
Biometric authentication ppt by navin 6 feb
Biometric authentication ppt by navin 6 febBiometric authentication ppt by navin 6 feb
Biometric authentication ppt by navin 6 feb
Navin Kumar
 
Biometrics
BiometricsBiometrics
Biometrics
umertariq12345
 
Biometrics Technology by Capt Awal
Biometrics Technology by Capt AwalBiometrics Technology by Capt Awal
Biometrics Technology by Capt Awal
Awal
 
Biometricsppt
BiometricspptBiometricsppt
Biometricsppt
DrKRBadhiti
 
Mobile payment
Mobile paymentMobile payment
Mobile payment
Savvycom Savvycom
 

Recommended

Strong Customer Authentication & Biometrics
Strong Customer Authentication & BiometricsStrong Customer Authentication & Biometrics
Strong Customer Authentication & Biometrics
FIDO Alliance
 
Biometrics
BiometricsBiometrics
Biometrics
shweta-sharma99
 
Biometrics Technology Intresting PPT
Biometrics Technology Intresting PPT Biometrics Technology Intresting PPT
Biometrics Technology Intresting PPT
preeti tripathi
 
Biometric authentication ppt by navin 6 feb
Biometric authentication ppt by navin 6 febBiometric authentication ppt by navin 6 feb
Biometric authentication ppt by navin 6 feb
Navin Kumar
 
Biometrics
BiometricsBiometrics
Biometrics
umertariq12345
 
Biometrics Technology by Capt Awal
Biometrics Technology by Capt AwalBiometrics Technology by Capt Awal
Biometrics Technology by Capt Awal
Awal
 
Biometricsppt
BiometricspptBiometricsppt
Biometricsppt
DrKRBadhiti
 
Mobile payment
Mobile paymentMobile payment
Mobile payment
Savvycom Savvycom
 
Biometric Access Control Systems
Biometric Access Control SystemsBiometric Access Control Systems
Biometric Access Control Systems
Safe-Systems Inc.
 
Biometric authentication
Biometric authenticationBiometric authentication
Biometric authentication
Abduhalim Beknazarov
 
Face Recognition Technology
Face Recognition TechnologyFace Recognition Technology
Face Recognition Technology
Shashidhar Reddy
 
Biometric technology .pptx
Biometric technology .pptxBiometric technology .pptx
Biometric technology .pptx
vineeth chepuri
 
Biometrics Technology Seminar Report.
Biometrics Technology Seminar Report.Biometrics Technology Seminar Report.
Biometrics Technology Seminar Report.
Pavan Kumar MT
 
face recognition
face recognitionface recognition
face recognition
vipin varghese
 
Automated attendance system using Face recognition
Automated attendance system using Face recognitionAutomated attendance system using Face recognition
Automated attendance system using Face recognition
IRJET Journal
 
biometrics
biometricsbiometrics
biometrics
Akhil Kumar
 
Bio atm with-microsoft_finger_print_sdk
Bio atm with-microsoft_finger_print_sdkBio atm with-microsoft_finger_print_sdk
Bio atm with-microsoft_finger_print_sdk
Mahesh Shitole
 
Biometrics Technology In the 21st Century
Biometrics Technology In the 21st CenturyBiometrics Technology In the 21st Century
Biometrics Technology In the 21st Century
Star Link Communication Pvt Ltd
 
Biometric Authentication Technology - Report
Biometric Authentication Technology - ReportBiometric Authentication Technology - Report
Biometric Authentication Technology - Report
Navin Kumar
 
Biometrics ppt
Biometrics pptBiometrics ppt
Biometrics ppt
MOUNIKA VINNAKOTA
 
Biometric Security Systems ppt
Biometric Security Systems pptBiometric Security Systems ppt
Biometric Security Systems ppt
OECLIB Odisha Electronics Control Library
 
Face recognition technology - BEST PPT
Face recognition technology - BEST PPTFace recognition technology - BEST PPT
Face recognition technology - BEST PPT
Siddharth Modi
 
biometric payment system authentication
biometric payment system authenticationbiometric payment system authentication
biometric payment system authentication
Saurabh Pandey
 
Automatic Attendance System using Deep Learning
Automatic Attendance System using Deep LearningAutomatic Attendance System using Deep Learning
Automatic Attendance System using Deep Learning
Sunil Aryal
 
Aadhaar Enable Payment System
Aadhaar Enable Payment SystemAadhaar Enable Payment System
Aadhaar Enable Payment System
Ezulix Software Private Limited
 
Attendance Using Facial Recognition
Attendance Using Facial RecognitionAttendance Using Facial Recognition
Attendance Using Facial Recognition
Vikramaditya Tarai
 
Overview of Mobile Payment Systems
Overview of Mobile Payment SystemsOverview of Mobile Payment Systems
Overview of Mobile Payment Systems
Amit Naik
 
UPI Presentation.pptx
UPI Presentation.pptxUPI Presentation.pptx
UPI Presentation.pptx
RaushanKumar375157
 
Strong Customer Authentication & Biometrics
Strong Customer Authentication & BiometricsStrong Customer Authentication & Biometrics
Strong Customer Authentication & Biometrics
FIDO Alliance
 
8 Reasons You Should Switch to Biometrics Authentication for Digital Onboarding
8 Reasons You Should Switch to Biometrics Authentication for Digital Onboarding8 Reasons You Should Switch to Biometrics Authentication for Digital Onboarding
8 Reasons You Should Switch to Biometrics Authentication for Digital Onboarding
Panamax, Inc
 

More Related Content

What's hot

Biometric Authentication Technology - Report
Biometric Authentication Technology - ReportBiometric Authentication Technology - Report
Biometric Authentication Technology - Report
Navin Kumar
 
Face recognition technology - BEST PPT
Face recognition technology - BEST PPTFace recognition technology - BEST PPT
Face recognition technology - BEST PPT
Siddharth Modi
 
biometric payment system authentication
biometric payment system authenticationbiometric payment system authentication
biometric payment system authentication
Saurabh Pandey
 

What's hot (20)

Biometric Access Control Systems
Biometric Access Control SystemsBiometric Access Control Systems
Biometric Access Control Systems
 
Biometric authentication
Biometric authenticationBiometric authentication
Biometric authentication
 
Face Recognition Technology
Face Recognition TechnologyFace Recognition Technology
Face Recognition Technology
 
Biometric technology .pptx
Biometric technology .pptxBiometric technology .pptx
Biometric technology .pptx
 
Biometrics Technology Seminar Report.
Biometrics Technology Seminar Report.Biometrics Technology Seminar Report.
Biometrics Technology Seminar Report.
 
face recognition
face recognitionface recognition
face recognition
 
Automated attendance system using Face recognition
Automated attendance system using Face recognitionAutomated attendance system using Face recognition
Automated attendance system using Face recognition
 
biometrics
biometricsbiometrics
biometrics
 
Bio atm with-microsoft_finger_print_sdk
Bio atm with-microsoft_finger_print_sdkBio atm with-microsoft_finger_print_sdk
Bio atm with-microsoft_finger_print_sdk
 
Biometrics Technology In the 21st Century
Biometrics Technology In the 21st CenturyBiometrics Technology In the 21st Century
Biometrics Technology In the 21st Century
 
Biometric Authentication Technology - Report
Biometric Authentication Technology - ReportBiometric Authentication Technology - Report
Biometric Authentication Technology - Report
 
Biometrics ppt
Biometrics pptBiometrics ppt
Biometrics ppt
 
Biometric Security Systems ppt
Biometric Security Systems pptBiometric Security Systems ppt
Biometric Security Systems ppt
 
Face recognition technology - BEST PPT
Face recognition technology - BEST PPTFace recognition technology - BEST PPT
Face recognition technology - BEST PPT
 
biometric payment system authentication
biometric payment system authenticationbiometric payment system authentication
biometric payment system authentication
 
Automatic Attendance System using Deep Learning
Automatic Attendance System using Deep LearningAutomatic Attendance System using Deep Learning
Automatic Attendance System using Deep Learning
 
Aadhaar Enable Payment System
Aadhaar Enable Payment SystemAadhaar Enable Payment System
Aadhaar Enable Payment System
 
Attendance Using Facial Recognition
Attendance Using Facial RecognitionAttendance Using Facial Recognition
Attendance Using Facial Recognition
 
Overview of Mobile Payment Systems
Overview of Mobile Payment SystemsOverview of Mobile Payment Systems
Overview of Mobile Payment Systems
 
UPI Presentation.pptx
UPI Presentation.pptxUPI Presentation.pptx
UPI Presentation.pptx
 

Similar to Biometrics for Payment Authentication

Going beyond MFA(Multi-factor authentication)-Future demands much more
Going beyond MFA(Multi-factor authentication)-Future demands much moreGoing beyond MFA(Multi-factor authentication)-Future demands much more
Going beyond MFA(Multi-factor authentication)-Future demands much more
indragantiSaiHiranma
 

Similar to Biometrics for Payment Authentication (20)

Strong Customer Authentication & Biometrics
Strong Customer Authentication & BiometricsStrong Customer Authentication & Biometrics
Strong Customer Authentication & Biometrics
 
8 Reasons You Should Switch to Biometrics Authentication for Digital Onboarding
8 Reasons You Should Switch to Biometrics Authentication for Digital Onboarding8 Reasons You Should Switch to Biometrics Authentication for Digital Onboarding
8 Reasons You Should Switch to Biometrics Authentication for Digital Onboarding
 
The Essence of Online ID Verification for Enhanced User Authentication.pdf
The Essence of Online ID Verification for Enhanced User Authentication.pdfThe Essence of Online ID Verification for Enhanced User Authentication.pdf
The Essence of Online ID Verification for Enhanced User Authentication.pdf
 
Procert Authentication Platform by Mcarbon
Procert Authentication Platform by McarbonProcert Authentication Platform by Mcarbon
Procert Authentication Platform by Mcarbon
 
Going beyond MFA(Multi-factor authentication)-Future demands much more
Going beyond MFA(Multi-factor authentication)-Future demands much moreGoing beyond MFA(Multi-factor authentication)-Future demands much more
Going beyond MFA(Multi-factor authentication)-Future demands much more
 
Passwordless Mobile Banking.pdf
Passwordless Mobile Banking.pdfPasswordless Mobile Banking.pdf
Passwordless Mobile Banking.pdf
 
Identity Verification API The Cornerstone of Digital Trust.docx
Identity Verification API The Cornerstone of Digital Trust.docxIdentity Verification API The Cornerstone of Digital Trust.docx
Identity Verification API The Cornerstone of Digital Trust.docx
 
Agri360 Credit Risk Platform
Agri360 Credit Risk PlatformAgri360 Credit Risk Platform
Agri360 Credit Risk Platform
 
MyInfo Product Journey- GovTech Singapore
MyInfo Product Journey- GovTech SingaporeMyInfo Product Journey- GovTech Singapore
MyInfo Product Journey- GovTech Singapore
 
Callcredit's Fraud Summit 2016 - Identity verification stream
Callcredit's Fraud Summit 2016 - Identity verification streamCallcredit's Fraud Summit 2016 - Identity verification stream
Callcredit's Fraud Summit 2016 - Identity verification stream
 
Figtech Group LLC- Insurtech Innovation Award 2023
Figtech Group LLC- Insurtech Innovation Award 2023Figtech Group LLC- Insurtech Innovation Award 2023
Figtech Group LLC- Insurtech Innovation Award 2023
 
Biometric Fusion Impact on Finance Sector.pdf
Biometric Fusion Impact on Finance Sector.pdfBiometric Fusion Impact on Finance Sector.pdf
Biometric Fusion Impact on Finance Sector.pdf
 
Using Strong / Verified Identities
Using Strong / Verified IdentitiesUsing Strong / Verified Identities
Using Strong / Verified Identities
 
Javelin Research's State of Strong Authentication 2019 Report Webinar
Javelin Research's State of Strong Authentication 2019 Report Webinar Javelin Research's State of Strong Authentication 2019 Report Webinar
Javelin Research's State of Strong Authentication 2019 Report Webinar
 
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610 Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610
 
Remote Identity Verification: The Ultimate Guide
Remote Identity Verification: The Ultimate GuideRemote Identity Verification: The Ultimate Guide
Remote Identity Verification: The Ultimate Guide
 
FIDO Authentication and GSMA Mobile Connect
FIDO Authentication and GSMA Mobile ConnectFIDO Authentication and GSMA Mobile Connect
FIDO Authentication and GSMA Mobile Connect
 
Slideshare fintech-may26th-def
Slideshare fintech-may26th-defSlideshare fintech-may26th-def
Slideshare fintech-may26th-def
 
Boosting Your Business with KYC Analysis Software | ScoreMe Solutions
Boosting Your Business with KYC Analysis Software | ScoreMe SolutionsBoosting Your Business with KYC Analysis Software | ScoreMe Solutions
Boosting Your Business with KYC Analysis Software | ScoreMe Solutions
 
Loqr
LoqrLoqr
Loqr
 

More from FIDO Alliance

Consumer Attitudes Toward Strong Authentication & LoginWithFIDO.com
Consumer Attitudes Toward Strong Authentication & LoginWithFIDO.comConsumer Attitudes Toward Strong Authentication & LoginWithFIDO.com
Consumer Attitudes Toward Strong Authentication & LoginWithFIDO.com
FIDO Alliance
 
Introduction to FIDO and eIDAS Services
Introduction to FIDO and eIDAS ServicesIntroduction to FIDO and eIDAS Services
Introduction to FIDO and eIDAS Services
FIDO Alliance
 

More from FIDO Alliance (20)

FIDO Alliance: Welcome and FIDO Update.pptx
FIDO Alliance: Welcome and FIDO Update.pptxFIDO Alliance: Welcome and FIDO Update.pptx
FIDO Alliance: Welcome and FIDO Update.pptx
 
IBM: Hey FIDO, Meet Passkey!.pptx
IBM: Hey FIDO, Meet Passkey!.pptxIBM: Hey FIDO, Meet Passkey!.pptx
IBM: Hey FIDO, Meet Passkey!.pptx
 
OTIS: Our Journey to Passwordless.pptx
OTIS: Our Journey to Passwordless.pptxOTIS: Our Journey to Passwordless.pptx
OTIS: Our Journey to Passwordless.pptx
 
FIDO Workshop-Demo Breakdown.pptx
FIDO Workshop-Demo Breakdown.pptxFIDO Workshop-Demo Breakdown.pptx
FIDO Workshop-Demo Breakdown.pptx
 
CISA: #MoreThanAPassword.pptx
CISA: #MoreThanAPassword.pptxCISA: #MoreThanAPassword.pptx
CISA: #MoreThanAPassword.pptx
 
FIDO Authentication: Unphishable MFA for All
FIDO Authentication: Unphishable MFA for AllFIDO Authentication: Unphishable MFA for All
FIDO Authentication: Unphishable MFA for All
 
Introducing FIDO Device Onboard (FDO)
Introducing FIDO Device Onboard (FDO)Introducing FIDO Device Onboard (FDO)
Introducing FIDO Device Onboard (FDO)
 
FIDO Alliance Webinar: Catch Up WIth FIDO
FIDO Alliance Webinar: Catch Up WIth FIDOFIDO Alliance Webinar: Catch Up WIth FIDO
FIDO Alliance Webinar: Catch Up WIth FIDO
 
Consumer Attitudes Toward Strong Authentication & LoginWithFIDO.com
Consumer Attitudes Toward Strong Authentication & LoginWithFIDO.comConsumer Attitudes Toward Strong Authentication & LoginWithFIDO.com
Consumer Attitudes Toward Strong Authentication & LoginWithFIDO.com
 
新しい認証技術FIDOの最新動向
新しい認証技術FIDOの最新動向新しい認証技術FIDOの最新動向
新しい認証技術FIDOの最新動向
 
日立PBI技術を用いた「デバイスフリーリモートワーク」構想
日立PBI技術を用いた「デバイスフリーリモートワーク」構想日立PBI技術を用いた「デバイスフリーリモートワーク」構想
日立PBI技術を用いた「デバイスフリーリモートワーク」構想
 
Introduction to FIDO and eIDAS Services
Introduction to FIDO and eIDAS ServicesIntroduction to FIDO and eIDAS Services
Introduction to FIDO and eIDAS Services
 
富士通の生体認証ソリューションと提案
富士通の生体認証ソリューションと提案富士通の生体認証ソリューションと提案
富士通の生体認証ソリューションと提案
 
テレワーク本格導入におけるID認証考察
テレワーク本格導入におけるID認証考察テレワーク本格導入におけるID認証考察
テレワーク本格導入におけるID認証考察
 
「開けゴマ!」からYubiKeyへ
「開けゴマ!」からYubiKeyへ「開けゴマ!」からYubiKeyへ
「開けゴマ!」からYubiKeyへ
 
YubiOnが目指す未来
YubiOnが目指す未来YubiOnが目指す未来
YubiOnが目指す未来
 
FIDO2導入してみたを考えてみた
FIDO2導入してみたを考えてみたFIDO2導入してみたを考えてみた
FIDO2導入してみたを考えてみた
 
中小企業によるFIDO導入事例
中小企業によるFIDO導入事例中小企業によるFIDO導入事例
中小企業によるFIDO導入事例
 
VPNはもう卒業!FIDO2認証で次世代リモートアクセス
VPNはもう卒業!FIDO2認証で次世代リモートアクセスVPNはもう卒業!FIDO2認証で次世代リモートアクセス
VPNはもう卒業!FIDO2認証で次世代リモートアクセス
 
CloudGate UNOで安全便利なパスワードレスリモートワーク
CloudGate UNOで安全便利なパスワードレスリモートワークCloudGate UNOで安全便利なパスワードレスリモートワーク
CloudGate UNOで安全便利なパスワードレスリモートワーク
 

Recently uploaded

Obat Penggugur Kandungan Di Apotik Kimia Farma (087776558899)
Obat Penggugur Kandungan Di Apotik Kimia Farma (087776558899)Obat Penggugur Kandungan Di Apotik Kimia Farma (087776558899)
Obat Penggugur Kandungan Di Apotik Kimia Farma (087776558899)
Cara Menggugurkan Kandungan 087776558899
 
Satara Call girl escort *74796//13122* Call me punam call girls 24*7hour avai...
Satara Call girl escort *74796//13122* Call me punam call girls 24*7hour avai...Satara Call girl escort *74796//13122* Call me punam call girls 24*7hour avai...
Satara Call girl escort *74796//13122* Call me punam call girls 24*7hour avai...
nishasame66
 

Recently uploaded (6)

Mobile Application Development-Android and It’s Tools
Mobile Application Development-Android and It’s ToolsMobile Application Development-Android and It’s Tools
Mobile Application Development-Android and It’s Tools
 
Obat Penggugur Kandungan Di Apotik Kimia Farma (087776558899)
Obat Penggugur Kandungan Di Apotik Kimia Farma (087776558899)Obat Penggugur Kandungan Di Apotik Kimia Farma (087776558899)
Obat Penggugur Kandungan Di Apotik Kimia Farma (087776558899)
 
Mobile Application Development-Components and Layouts
Mobile Application Development-Components and LayoutsMobile Application Development-Components and Layouts
Mobile Application Development-Components and Layouts
 
Android Application Components with Implementation & Examples
Android Application Components with Implementation & ExamplesAndroid Application Components with Implementation & Examples
Android Application Components with Implementation & Examples
 
Leading Mobile App Development Companies in India (2).pdf
Leading Mobile App Development Companies in India (2).pdfLeading Mobile App Development Companies in India (2).pdf
Leading Mobile App Development Companies in India (2).pdf
 
Satara Call girl escort *74796//13122* Call me punam call girls 24*7hour avai...
Satara Call girl escort *74796//13122* Call me punam call girls 24*7hour avai...Satara Call girl escort *74796//13122* Call me punam call girls 24*7hour avai...
Satara Call girl escort *74796//13122* Call me punam call girls 24*7hour avai...
 

Biometrics for Payment Authentication

  • 1. Biometrics for Payment Authentication September 25, 2018
  • 2. ©2018 Visa. All rights reserved.2 1. Introduction to 3-D Secure 2. Sample biometric authentication use cases 3. Visa ID Intelligence Biometrics service 4. Biometrics for out-of-band payment authentication
  • 3. ©2018 Visa. All rights reserved.3 Introduction to 3-D Secure
  • 4. ©2018 Visa. All rights reserved.4 3-D Secure (3DS) is a messaging protocol enabling authentication of a cardholder for e-commerce transactions with the issuer prior to authorization 3-D Secure ? Authentication with 3-D Secure Authentication verifies the identity of the cardholder ? Authorization Authentication with 3DS 2.0 complements authorization to strengthen issuer confidence in approving the transaction The issuer collaborates with the merchant to authenticate the cardholder’s identity before the authorization occurs
  • 5. ©2018 Visa. All rights reserved.5 3DS 2.0 protocol enhances issuer risk-based authentication capabilities and improves the user experience across multiple form factors and use cases 3-D Secure 2.0 Improvements Improved User Experience 3-D Secure 1.0 3-D Secure 2.0 • Capable of integration with the merchant experience X limited X expanded • Removal of Activation During Shopping X • Reduce the number of messages required X More Data for Authentication and Security 3-D Secure 1.0 3-D Secure 2.0 • Payment-related data X limited X expanded • Non-payment related data X • Support for new and future authentication methods X Flexible Device and Channel Support 3-D Secure 1.0 3-D Secure 2.0 • Browser-based authentication support X X expanded • Mobile/application-based authentication support X • Digital Wallet, Non-payment-based authentication X • Support for future channels and form factors (i.e. MOTO) X
  • 6. ©2018 Visa. All rights reserved.6 Sample biometric authentication use cases
  • 7. ©2018 Visa. All rights reserved.7 Offer customers choice on how they authenticate themselves through face, fingerprint, and voice while helping to reduce friction associated with PINs and passwords Reduce friction during e-commerce shopping experiences by helping customers to authenticate themselves with their preferred biometrics via your mobile app Simplify authentication and help reduce exposure to fraud across your channels by requiring biometric authentication in response to a push request to your mobile app on the customer’s device Sample Biometric Authentication Use Cases Simple App Login Step-up authentication for online transactions Step-up authentication for account changes
  • 8. ©2018 Visa. All rights reserved.8 Offer customers choice on how they authenticate themselves through face, fingerprint, and voice while helping to reduce friction associated with PINs and passwords Designed to reduce friction during e-commerce shopping experiences by helping customers to authenticate themselves with their preferred supported biometrics via your mobile app Simplify authentication and help reduce exposure to fraud across your channels by requiring biometric authentication in response to a push request to your mobile app on the customer’s device Simple App Login Step-up authentication for online transactions Step-up authentication for account changes Sample Biometric Authentication Use Cases
  • 9. ©2018 Visa. All rights reserved.9 73% of global consumers surveyed would be comfortable using biometrics to make a payment1 Source: Research conducted by Visa from Sept-Nov 2017, among over 10,000 consumers who use at least one credit card, debit card, and/or mobile pay. Looked at Q18 – To what extent are you/would you be personally comfortable using each of the following payment authentication methods? Data includes summary of NET:Top 2 (Somewhat/Very comfortable) for Fingerprint recognition, Eye scan, Facial recognition, Voice recognition, and Vein pattern recognition. Why Biometrics? 73% Singapore 68% Canada 70% U.S. 83% Brazil 75% UAE 73% Australia 70% New Zealand 74% Japan 78% China 76% South Africa 66% France 65% Ukraine 73% S. Korea 63% Russia
  • 10. ©2018 Visa. All rights reserved.10 Offer customers choice on how they authenticate themselves through face, fingerprint, and voice while helping to reduce friction associated with PINs and passwords Designed to reduce friction during e-commerce shopping experiences by helping customers to authenticate themselves with their preferred supported biometrics via your mobile app Simplify authentication and help reduce exposure to fraud across your channels by requiring biometric authentication in response to a push request to your mobile app on the customer’s device Sample Biometric Authentication Use Cases Simple App Login Step-up authentication for online transactions Step-up authentication for account changes These materials and best practice recommendations are provided for informational purposes only and should not be relied upon for marketing, legal, regulatory or other advice. Recommended marketing materials should be independently evaluated in light of your specific business needs and any applicable laws and regulations. Visa is not responsible for your use of the marketing materials, best practice recommendations, or other information, including errors of any kind, contained in this document
  • 11. ©2018 Visa. All rights reserved.11 Visa ID Intelligence Biometrics Service
  • 12. ©2018 Visa. All rights reserved.12 v • One stop shopping through Visa Developer • Connect to vetted technologies selected from hundreds of service providers Financial Institutions Merchants Acquirers/ Processors Smarter Access • Streamlined contracting with Visa to enable faster time to market • Build with Visa APIs and SDKs for simplified integration Smarter Integration • Intelligently use authentication data to create elegant user experience • Apply learning from the best practices and user testing Smarter Decisions Identity Documents Device Data (coming soon) User Data Biometrics (coming soon) The Visa ID Intelligence Solution Suite of authentication services This slide is intended for illustrative purposes only. It contains depictions of a product currently in the process of deployment, and should be understood as a representation of the potential features of the fully-deployed product. The final version of this product may not contain all of the features described in this presentation. ©2018 Visa. All rights reserved.
  • 13. ©2018 Visa. All rights reserved.13 Highly Available Visa manages the redundancy and failover for a highly available production service FIDO Alliance Certified Server is compliant with FIDO® UAF specifications* • Compatible with certified FIDO authenticators • Allows for secure registration of FIDO authenticators to servers • Supports login and step-up use-cases Authentication Management Tools • Create and manage multiple policies for enrollment and authentication • Manage multiple applications across different platforms (iOS, Android) API and hosted server * As of this webinar Visa ID Intelligence Biometrics ©2018 Visa. All rights reserved.
  • 14. ©2018 Visa. All rights reserved.14 • Helps eliminate the need to build specific mobile app and server support for FIDO® UAF protocol • Helps eliminate the need to code for different devices with a hardware agnostic solution • Mobile SDKs to help enforce FIDO policies in the application • Add additional authentication capabilities such as face and voice, designed to allow customers to select their preferred biometric modality • Help verify the biometric, device, and app during each authentication event* *if user uses a biometric authenticator Android and iOS SDKs Visa ID Intelligence Biometrics Multi-factor authentication policies High risk (transfer funds) Allowed Not Allowed Silent and PinPin Low risk (view accounts) Allowed Pin Silent
  • 15. ©2018 Visa. All rights reserved.15 Out-of-band step-up authentication
  • 16. ©2018 Visa. All rights reserved.16 Streamline 3-D Secure with Biometrics Proof of concept This page is intended for illustrative purposes only. It contains depictions of a product currently in the process of deployment, and should be understood as a representation of the potential features of the fully-deployed product. The final version of this product may not contain all of the features described in this presentation. (In Progress) Place order Authenticate with Biometrics Merchant SuccessNotification opens issuer app
  • 17. ©2018 Visa. All rights reserved.17 Streamline 3-D Secure with Biometrics Proof of concept This page is intended for illustrative purposes only. It contains depictions of a product currently in the process of deployment, and should be understood as a representation of the potential features of the fully-deployed product. The final version of this product may not contain all of the features described in this presentation. (In Progress) Place order Authenticate with Biometrics Merchant SuccessNotification opens issuer app
  • 18. ©2018 Visa. All rights reserved.18 Streamline 3-D Secure with Biometrics Proof of concept This page is intended for illustrative purposes only. It contains depictions of a product currently in the process of deployment, and should be understood as a representation of the potential features of the fully-deployed product. The final version of this product may not contain all of the features described in this presentation. (In Progress) Place order Authenticate with Biometrics Merchant SuccessNotification opens issuer app
  • 19. ©2018 Visa. All rights reserved.19 Streamline 3-D Secure with Biometrics Proof of concept This page is intended for illustrative purposes only. It contains depictions of a product currently in the process of deployment, and should be understood as a representation of the potential features of the fully-deployed product. The final version of this product may not contain all of the features described in this presentation. (In Progress) Place order Authenticate with Biometrics Merchant SuccessNotification opens issuer app
  • 20. ©2018 Visa. All rights reserved.20 3DS Requestor Source: EMVCo - EMV® 3-D Secure – Protocol and Core Functions Specification version 2.0.0, October 2016 3-D Secure 2.0 Environment 3DS Client 3DS Server 3DS Requestor APIs/3DS Server APIs/Browser interaction 3DS Requestor Environment *Note: gray dashed arrows and 3DS Requestor are not part of 3DS specifications Customer shops
  • 21. ©2018 Visa. All rights reserved.21 Source: EMVCo - EMV® 3-D Secure – Protocol and Core Functions Specification version 2.0.0, October 2016 3-D Secure 2.0 Environment Directory Server Issuer *Note: gray dashed arrows and 3DS Requestor are not part of 3DS specifications 3DS Requestor3DS Client 3DS Server 3DS Requestor APIs/3DS Server APIs/Browser interaction 3DS Requestor Environment Customer shops Access Control Server (ACS)
  • 22. ©2018 Visa. All rights reserved.22 Source: EMVCo - EMV® 3-D Secure – Protocol and Core Functions Specification version 2.0.0, October 2016 3-D Secure 2.0 Environment Customer shops Directory Server Access Control Server (ACS) Issuer *Note: gray dashed arrows and 3DS Requestor are not part of 3DS specifications Challenge Request/Response 3DS Method 3DS Requestor3DS Client 3DS Server 3DS Requestor APIs/3DS Server APIs/Browser interaction 3DS Requestor Environment
  • 23. ©2018 Visa. All rights reserved.23 Source: EMVCo - EMV® 3-D Secure – Protocol and Core Functions Specification version 2.0.0, October 2016 Out-of-band step-up authentication Customer shops Directory Server ACS Server Challenge Request/Response 3DS Method 3DS Requestor3DS Client 3DS Server 3DS Requestor APIs/3DS Server APIs/Browser interaction 3DS Requestor Environment Issuer
  • 24. ©2018 Visa. All rights reserved.24 Source: EMVCo - EMV® 3-D Secure – Protocol and Core Functions Specification version 2.0.0, October 2016 Out-of-band step-up authentication Visa ID Intelligence Biometrics Customer shops Directory Server ACS Server Initiate authentication request1 Challenge Request/Response 3DS Method 3DS Requestor3DS Client 3DS Server 3DS Requestor APIs/3DS Server APIs/Browser interaction 3DS Requestor Environment Issuer
  • 25. ©2018 Visa. All rights reserved.25 Source: EMVCo - EMV® 3-D Secure – Protocol and Core Functions Specification version 2.0.0, October 2016 Out-of-band step-up authentication Customer shops Directory Server ACS Server Initiate authentication request1 Challenge Request/Response 3DS Method 3DS Requestor3DS Client 3DS Server 3DS Requestor APIs/3DS Server APIs/Browser interaction 3DS Requestor Environment Issuer Visa ID Intelligence Biometrics
  • 26. ©2018 Visa. All rights reserved.26 Source: EMVCo - EMV® 3-D Secure – Protocol and Core Functions Specification version 2.0.0, October 2016 Out-of-band step-up authentication Customer shops Directory Server ACS Server Perform authentication Initiate authentication request1 3 Challenge Request/Response 3DS Method 3DS Requestor3DS Client 3DS Server 3DS Requestor APIs/3DS Server APIs/Browser interaction 3DS Requestor Environment Issuer Visa ID Intelligence Biometrics
  • 27. ©2018 Visa. All rights reserved.27 Source: EMVCo - EMV® 3-D Secure – Protocol and Core Functions Specification version 2.0.0, October 2016 3-D Secure 2.0 Environment Customer shops Directory Server Access Control Server (ACS) Issuer *Note: gray dashed arrows and 3DS Requestor are not part of 3DS specifications Challenge Request/Response 3DS Method 3DS Requestor3DS Client 3DS Server 3DS Requestor APIs/3DS Server APIs/Browser interaction 3DS Requestor Environment
  • 28. For more information Visa ID Intelligence www.visaidintelligence.com EMV® 3-D Secure https://www.emvco.com/emv-technologies/3d-secure/ Money 20/20 in Las Vegas from Oct 22-24, 2018 Look for the Visa kiosk in the Pavilion at the FIDO® Alliance booth #1259 All brand names, logos and/or trademarks are the property of their respective owners, are used for identification purposes only, and do not necessarily imply product endorsement or affiliation with Visa.