About>3D Secure

3D Secure Authentication

3d secure compliance

What is 3D Secure?

3-D Secure is an XML-based protocol, designed by Visa, that adds an additional security layer for online credit card transactions. The service is offered to customers as Verified by Visa. This protocol has also been adopted by Mastercard, JCB, American Express and Diners Club International with the services named SecureCode, J/Secure, SafeKey and ProtectBuy, respectively.

GPayments was a founding member of the Visa International 3-D Secure Forum established November 2000


In the 3-D Secure protocol, Access Control Server (ACS) is in the issuer domain (banks). Each card issuer is required to maintain an ACS which is used to support cardholder authentication. A customer then authenticates to this ACS by providing their username and password, the ACS signs the result as either a success or a failure. This signature is then passed through the customer's browser and to the Merchant Plug-in (MPI). The MPI verifies the ACS signature and decides if it wishes to proceed with the transaction.


The Merchant Plug-in (MPI) is installed in the acquirer domain (acquiring banks, third party payment processors and merchants) to activate the cardholder interface during the authentication process. MPI identifies the account number and queries card issuer servers to determine if it is enrolled in a 3-D Secure program, it then returns the web site address of the ACS if it is found.

How it Works

how does 3d secure work?

What GPayments Provides

GPayments’ 3-D Secure ACS and MPI solutions, ActiveAccess and ActiveMerchant, are both certified by Verified by Visa, Mastercard SecureCode, American Express SafeKey, JCB J/Secure and Diners Club International ProtectBuy.


GPayments' ACS solution, ActiveAccess, is a multi-factor authentication platform providing authentication services for issuing banks, enterprises, government and third party application service providers. It provides two major authentication solutions, multi-factor user authentication and 3-D Secure authentication for eCommerce transactions. A new ActiveAccess authentication platform is being introduced to cater for the 3DS2 protocol. It will be backwards compatible and will continue support for 3DS 1.0.2 during the transition to 3DS2.

Read More


GPayments' MPI solution, ActiveMerchant, is an online merchant authentication system for online merchants, acquiring banks and third party application service providers. It offers different implementation modules to meet different requirements. To support the 3DS2 protocol, and authentication on mobile devices and apps, GPayments is introducing a new 3DS Server and a 3DS2 Mobile SDK.

Read More
For further information about GPayments’ 3-D Secure solutions, please feel free to contact us.