CAPS Report on Authentication and Mobile Payments to aid Implementation of PSD2

February 20, 2018

Blog

With PSD2’s Regulatory Technical Standards now published, the broader financial ecosystem is moving closer towards full-scale implementation of the EU’s revised payment services directive. Designed to add greater security to payments and stimulate commerce, PSD2 enables third party financial services to provide solutions without necessarily involving the current payment schemes.

The directive will enable payers to “push” payments directly through a bank transfer from their bank account to payees by enabling them to use third party Payment Service Providers (PSPs) to do so. Furthermore, customers will have the opportunity to consent to third party PSP products that access and utilise customers’ transactional data, such as budgeting services. To ensure security of payment transactions, PSD2 mandates multi-factor authentication for payment service providers (PSPs).

While these changes to the financial market are likely to stoke the demand for identity services, the broader PSD2 ecosystem will need to provide guidance on how the EU Directive can be interpreted and implemented. Organisations such as Convenient Access to PSD2 Services(CAPS) can play a role in helping to provide a common approach by acting as forum for the proposal of solutions to the technical, business and operational issues faced by potential PSD2 stakeholders across Europe. CAPS’ ‘Mobile Strong Customer Authentication Under PSD2: Comparisons and Considerations’, provides the framework for a common approach to strong customer authentication (SCA) in remote payment transactions, based on mobile devices.

In the wake of rising digital transactions and the high levels of fraud accompanying them, multi-factor authentication is increasingly regarded as the baseline for payment security, typically requiring payers to verify something they possess (such as a mobile phone) and something they know (such as a PIN) or something specific to who they are (such as a fingerprint).

PSPs and financial services without multi-factor authentication covering their entire customer base now face the task of developing or sourcing a multi-factor authentication service. With the new guidelines of the Regulatory Technical Standards leaving only an 18-month period from now until mandatory compliance, we can expect a spike in the demand for authentication products.

Mobile Connect, the identity solution developed by the mobile industry, is one such PSD2-compliant product. Designed for a range of sectors, Mobile Connect is supported by more than 60 mobile network operators in over 30 countries, thereby offering PSPs secure authentication on a global scale.

As well as serving existing PSPs and financial solutions making the transition to multi-factor authentication, Mobile Connect could also play a role in supporting new entrants to the market following PSD2’s broadening of the definition of ‘payment service provider’.

Read the full report

Back

Mobile Connect Workshop Presentations at MWCA Identity Seminar The seminar Mobile Connect Seminar: Reducing Fraud through Secure Authentication and ID Verification Services, brought together h wider mobile ecosystem aiming to prevent fraud b...

Read more | See all Identity Resources

Mobile Connect Workshop Presentation at Mobile 360 Digital Societies i The Mobile Connect workshop: Delivering commercial success through identity services attendees had the opportunity to learn the value and commercial scalability of mobile-based ...

Read more | See all Identity Resources

Distributed Ledger Technology, Blockchains and Identity: A Regulatory This paper provides an overview of the relevant regulations for the use of distributed ledger technologies (DLT) and blockchains for digital identity. Digital identity is the bas...

Read more | See all Identity Resources

Digital Identity: Global Trends and Highlights from the United States Mobile internet traffic now accounts for more than half of all global online traffic, reaching 51.2% of the world’s total this year. There are now 8.8 billion mobile connection...

Read more | See all Identity Resources

Digital Identity: Trends and News in China and South East Asia We are living through an exciting time for digital commerce in Asia. According to the Asian Development Bank, e-commerce in Asia as a whole now makes up around a quarter of all a...

Read more | See all Identity Resources

MWCS18 Identity Innovation Labs Presentations The Identity Innovation Labs at Mobile World Congress Shanghai 2018 were a set of three stand-alone industry discussions on the latest developments in digital identity. Featuring...

Read more | See all Identity Resources

Flash News: Court Curbs India’s ID Programme India’s Supreme Court has upheld the country’s ambitious Aadhaar digital identification programme, but struck down the requirement to link mobile-phone numbers, bank accounts...

Read more | Visit Identity Blog

Key Players Gather in Istanbul as Turkey Reaches Commercial Milestone 2018 has been a year in which e-commerce ceased to be an intriguing novelty in advanced economies, and became very much a fact of everyday life on every continent. The Middle Eas...

Read more | Visit Identity Blog

Flash News: Jump in Mobile Fraud Attacks The number of mobile fraud attacks worldwide rose 24% year-on-year in the first half of 2018, according to ThreatMetrix’s analysis of the 17.6 billion digital transactions moni...

Read more | Visit Identity Blog

Achieving Clarity on the Role of Blockchain in Digital Identity As global commerce moves ever more rapidly online, secure and effective provision of digital identity is becoming the lifeblood of the world economy.  The ability to verify user...

Read more | Visit Identity Blog

Flash News: US Mobile Operators Introduce App Log-In Service The four leading mobile operators in the US – AT&T, Sprint, T-Mobile, and Verizon —demonstrated a single sign-on service for smartphones at the Mobile World Congress ...

Read more | Visit Identity Blog

Digital Identity: Crucial for the Success of Today’s Mobile-First Wo Anatoly Kvitnitsky, VP of Growth, Trulioo Our digital identities are becoming increasingly more important as we transition to a mobile-first world. These identities shape the way...

Read more | Visit Identity Blog

Contact GSMA Legal Email Preference Centre Copyright © 2018 GSMA. GSM and the GSM Logo are registered and owned by the GSMA.