What is 3D Secure?
3-D Secure is an XML-based protocol, designed by Visa, that adds an additional security layer for online
credit card transactions. The service is offered to customers as Verified by Visa. This protocol has
also been adopted by Mastercard, JCB, American Express and Diners Club International with the services
named SecureCode, J/Secure, SafeKey and ProtectBuy, respectively.
GPayments was a founding member of the Visa International 3-D Secure Forum
established November 2000
ACCESS CONTROL SERVER (ACS)
In the 3-D Secure protocol, Access Control Server (ACS) is in the issuer domain (banks). Each card
issuer is required to maintain an ACS which is used to support cardholder authentication. A customer
then authenticates to this ACS by providing their username and password, the ACS signs the result as
either a success or a failure. This signature is then passed through the customer's browser and to
the Merchant Plug-in (MPI). The MPI verifies the ACS signature and decides if it wishes to proceed
with the transaction.
MERCHANT PLUG-IN (MPI)
The Merchant Plug-in (MPI) is installed in the acquirer domain (acquiring banks, third party payment
processors and merchants) to activate the cardholder interface during the authentication process.
MPI identifies the account number and queries card issuer servers to determine if it is enrolled in
a 3-D Secure program, it then returns the web site address of the ACS if it is found.
How it Works
What GPayments Provides
GPayments’ 3-D Secure ACS and MPI solutions, ActiveAccess and ActiveMerchant, are both certified by
Verified by Visa, Mastercard SecureCode, American Express SafeKey, JCB J/Secure and Diners Club
GPayments' ACS solution, ActiveAccess, is a multi-factor authentication platform
providing authentication services for issuing banks, enterprises, government and third
party application service providers. It provides two major authentication solutions,
multi-factor user authentication and 3-D Secure authentication for eCommerce
transactions. A new ActiveAccess authentication platform is being introduced to cater
for the 3DS2 protocol. It will be backwards compatible and will continue support for 3DS
1.0.2 during the transition to 3DS2.
GPayments' MPI solution, ActiveMerchant, is an online merchant authentication system for
online merchants, acquiring banks and third party application service providers. It
offers different implementation modules to meet different requirements. To support the
3DS2 protocol, and authentication on mobile devices
and apps, GPayments is introducing a new 3DS Server and a 3DS2 Mobile
For further information about GPayments’ 3-D Secure solutions, please feel
free to contact us