3D Secure (3DS)
An authentication protocol for card-not-present transactions that shifts fraud liability from the merchant to the card issuer when authentication passes.
3D Secure (3DS) adds an authentication step to card-not-present transactions. In the original version, cardholders were redirected to their bank's site to enter a password. In 3DS2 (the current standard), the bank performs risk-based authentication: most low-risk transactions pass silently without friction, while higher-risk transactions trigger a biometric or OTP challenge.
The key benefit for merchants: when a transaction is successfully authenticated via 3DS, fraud liability shifts to the card issuer. If an authenticated transaction is disputed as unauthorized, the issuer, not the merchant, absorbs the loss. This makes 3DS particularly valuable for high-ticket items and merchants with elevated chargeback rates.
In the European Union, 3DS2 is mandatory under PSD2 Strong Customer Authentication rules. In the US it is optional but increasingly used by e-commerce merchants in high-fraud categories.
Implementation is typically done at the gateway or payment platform level. Most major gateways support 3DS2 natively. The conversion impact is minimal with 3DS2 compared to the original version, which had significant checkout abandonment.
If you're an e-commerce merchant with a chargeback rate above 0.3%, 3DS is worth evaluating. The liability shift alone can eliminate a significant portion of fraud-related losses.
See how your effective rate compares to what competitive IC+ pricing would cost you.
Open CalculatorMore terms to know.
You now know more than most merchants.
Find out if your processor knows you know.
Upload your statement. We'll show you every fee by name, what each one costs you annually, and what you'd pay with a competitive processor. Same day or less, free.
Get My Free Statement Audit