Javelin Support
  • How do I find my transaction fees?
  • Onboarding & KYC (Know Your Customer) - Adyen
  • Onboarding & KYC (Know Your Customer) - Stripe
  • How to resolve a KYC check failure - Adyen
  • How to resolve a KYC check failure - Stripe
  • Adding Users
  • How to add or update a Bank Account - Stripe
  • Transactions
    • How to get a transaction report?
    • How to capture/cancel an Authorized transaction?
    • How to refund a transaction?
    • How to search for a transaction?
    • What do the transaction error codes mean?
    • What's a Fraud Score?
    • What's Liability Shift?
  • How do I take a payment via Email/SMS Link?
  • Payouts
    • How to get a payout report?
    • How do I receive payout transactions report automatically?
    • What payout intervals are possible?
  • Dispute Management
    • What's a Chargeback?
    • What's a Notification of Fraud?
  • Fraud Prevention
    • How do 3DS and Pre-Authorization work?
    • PSD2 & SCA
  • Shopper FAQs
    • Pending Transactions
  • STRIPE CARD READER HARDWARE
    • How do I order Stripe Card Reader devices?
Powered by GitBook
On this page

Was this helpful?

  1. Fraud Prevention

PSD2 & SCA

Strong Customer Authentication requires an extra layer of authentication during checkout. SCA is mandatory in the EU and banks will decline payments that require SCA and don’t meet the criteria.

PreviousHow do 3DS and Pre-Authorization work?NextPending Transactions

Last updated 4 years ago

Was this helpful?

What is Strong Customer Authentication (SCA)?

Authentication is required when a payment isn’t eligible for an exemption or when the customer’s bank denies an exemption request. Authentication must occur while the customer is on-session, or using your website or app, so this step needs to happen on order confirmation.

Strong Customer Authentication requires an extra layer of authentication during checkout. Limiting verification to card number, address, and CVV is no longer enough. Now, sellers are required to verify the buyer’s identity according to at least two of the following three factors:

  1. Possession: Something the user possesses, like a payment card.

  2. Knowledge: Something the user knows, like a 3-D Secure code attached to an account.

  3. Inherence: Something the user inherently is, like a fingerprint or other biometric impression.

To comply with SCA, at checkout, we collect 2 of the following 3 elements:

There are a number of types of Authentication, these are: Passive, biometric, and two-factor authentication.

This means the customer can be authenticated using either a one-time passcode or biometric ID, depending on what their bank supports.