frictionless PSD2 SCA With FIDO

Single-gesture 2FA to reduce friction and enable PSD2 SCA compliance

Benefits of FIDO for Strong Customer Authentication

FIDO authentication uses public key cryptography and provides the highest level of authentication assurance according to NIST

FIDO enables single-gesture, two-factor authentication (2FA) for 3DS2 and delegated authentication

FIDO complies with the PSD2 SCA requirements and provides merchants with more control over the user authentication experience

WHAT IS STRONG CUSTOMER AUTHENTICATION FOR PSD2?

PCI DSS Requirement 6:
Develop and maintain secure systems and applications

We provide standard FIPS 140-2 Level-2 certified cryptographic hardware module, or optional FIPS 140-2 Level-3 certified hardware module for the strongest key management from an open-source solution.
Standard FIPS 140-2 Level-1 certified cryptographic software interacting with cryptographic hardware
Automatic key rotation for protecting cardholder data (CHD) while your applications continue to service applications, non-stop

PCI DSS Requirement 3:
Protect stored cardholder data

We encrypt and tokenize sensitive card-holder data, enabling you to meet PCI DSS sensitive data handling requirements.
Keep your core cryptographic keys secret with FIPS 140-2 Level certified cryptographic modules; “M of N” Key Custodian control of hardware-protected keys.

REQUIREMENT - POSSESSION
FIDO - Authenticator with private key

REQUIREMENT - KNOWLEDGE
FIDO - PIN

REQUIREMENT - INHERENCE
FIDO - Biometrics

REQUIREMENT - AUTHENTICATION CODE
The signed response

REQUIREMENT - DYNAMIC LINKING
Authenticator can sign hash
(challenge, amount and payee)