September 14th, 2019 will mark a turning point in the security of online payments as we know them today, when the PSD2 (Revised Payment Service Directive) comes into force. The new European regulation will strengthen the security of internet banking operations.

The application of this European Directive will bring significant benefits to consumers by speeding up purchasing processes, increasing security, improving transparency and information to consumers, rectifying unauthorized transactions, reducing fraud and removing intermediaries in the online payment process.

What is PSD2?

The PSD2 is the second revision of the Payment Service Directive (PSD, 2007), which aimed at developing the market for electronic payments in the EU. Within the different measures highlight the opening for other companies to use banks payment’s services (Open Banking) and two-factor authentication (2FA) to increase security in transactions and prevent online fraud.

Its application is reduced to companies from the European Union.

Open Banking And third party payment service providers

Third-Party Payment Service Providers (TPP) will be able to enter the payment market by removing intermediaries (such as electronic payment providers and card companies (Mastercard, Visa)) by executing a payment directly on a bank account under the express consumer’s authorization.

As a result of the opening up of banks to third parties, the ecosystem that has been developed has strengthened the payments market, giving rise to the creation of a lot of Fin-Techs. In addition, companies such as Amazon or Alipay will be able to sell us a product without doing it through our bank.

All this is technically possible by the open APIs that banks provide for external payment providers in order to access their payment platforms.

What is Strong Customer Authentication?

How do we improve the security of the data shared between the different stakeholders (customers, merchants and banks) in the PSD2? by introducing a more robust customer authentication system based on two-factor authentication, known as Strong Customer Authentication or SCA.

pin «Two-factor authentication is a security process in which users authenticate their identity using two of the following three methods: something you know (password or pin), something you have (card or mobile), and something you are (facial biometric recognition, fingerprint recognition and so on)»

pin «Two-factor authentication is a security process in which users authenticate their identity using two of the following three methods: something you know (password or pin), something you have (card or mobile), and something you are (facial biometric recognition, fingerprint recognition and so on)»

Despite the fact that many of the payments we usually make already use two authentication factors, with the implementation of the PSD2, biometric authentication will be massively used since it has been proven to be one of the most agile, secure and efficient methods to authenticate the identity of a consumer in the online purchase process.

Biometric Authentication in online payments

With the arrival of the PSD2, biometric payments leave that part of the collective imaginary that considers them as pure science fiction to become part of our daily lives. And not only in online payments but also in physical stores, where in a short time we will begin to pay using our face through facial recognition, our fingerprint, the voice or the iris, being able to use a biometric authentication system or another one based on our needs and factors such as illumination or environmental noise.

If you are interested in our technology do not hesitate to contact us, and if you liked the article, share it and add value to your followers!