Authentication can also be used to identify a device or process.
Authentication typically occurs through the use of one or more authentication factors such as:
- Something you know, such as a password or passphrase
- Something you have, such as a token device or smart card
- Something you are, such as a biometric
You may already be used to Two Factor Authentication (2FA) when doing online banking for example. Here you would login to your account and be sent a text with a code or one-time-password as an extra verification that you are the account holder.
Authentication requirements are increasing, particularly in the payments industry, with many examples in different payment channels.
3D Secure: Verified by Visa and MasterCard Secure are examples of this and provides customers with a secure authentication step before they can purchase online, ensuring that they are using the correct card details to help prevent card payment fraud. when a customer is ready to pay for something online, they are redirected to their debit or credit card provider’s 3D secure page on their website.
On their providers website, they’ll either be asked for a password (which they would have set up already with their bank) or will need to enter an authentication code (which will be automatically sent to their confirmed mobile phone number).
After they’ve provided the correct details, the payment will be approved by the card provider and they’ll be directed back to your website.
2FA – Two-factor Authentication: A method of establishing access to an online account or computer system that requires the user to provide two different types of information. A ‘factor’ simply means a way to convince the computer or online service that you are who you say you are. Most commonly it is a username and password.
Read more about PSD2 and SCA