3D Secure (often called 3DS or 3D Secure 2) is an extra layer of protection for card payments. It helps confirm that the person making the purchase is the rightful cardholder, reducing the risk of fraud.
When paying online with a card that supports 3D Secure, the customer may be asked to verify their identity before the payment is completed.
Not every payment requires this step. Banks often use risk-based checks; if the payment looks low-risk the customer may not be prompted at all.
For customers, 3D Secure means:
A more secure checkout process.
Extra confidence that card details are safe
Sometimes, one quick extra step is needed to complete the purchase
What to Expect with 3D Secure
When your customer pays using a credit or debit card, they may be asked to take one quick extra step before payment goes through.
Here’s what it usually looks like:
Enter card details as normal
Nothing changes in the first step — they'll type in their card number, expiration date, security code, billing address and zip code.The bank may ask to verify the payment
Common challenge methods today:One-Time Passcode (OTP)
Sent via SMS, push notification, or email.
Valid only for that specific transaction — expires within minutes.
Prevents reuse by fraudsters.
Bank Mobile App Push Approval
Shopper gets a notification in their banking app and taps “Approve.”
Often uses device biometrics (Face ID, fingerprint).
Biometric Authentication
Fingerprint, facial recognition, or voice scan, depending on the device.
Security Token
Some banks still offer a physical token or digital generator to produce short-lived codes.
Once verified, the payment continues
After they complete this step, they'll see the order confirmed.