CAPS Report on Authentication and Mobile Payments to aid Implementation of PSD2

February 20, 2018

Blog

With PSD2’s Regulatory Technical Standards now published, the broader financial ecosystem is moving closer towards full-scale implementation of the EU’s revised payment services directive. Designed to add greater security to payments and stimulate commerce, PSD2 enables third party financial services to provide solutions without necessarily involving the current payment schemes.

The directive will enable payers to “push” payments directly through a bank transfer from their bank account to payees by enabling them to use third party Payment Service Providers (PSPs) to do so. Furthermore, customers will have the opportunity to consent to third party PSP products that access and utilise customers’ transactional data, such as budgeting services. To ensure security of payment transactions, PSD2 mandates multi-factor authentication for payment service providers (PSPs).

While these changes to the financial market are likely to stoke the demand for identity services, the broader PSD2 ecosystem will need to provide guidance on how the EU Directive can be interpreted and implemented. Organisations such as Convenient Access to PSD2 Services(CAPS) can play a role in helping to provide a common approach by acting as forum for the proposal of solutions to the technical, business and operational issues faced by potential PSD2 stakeholders across Europe. CAPS’ ‘Mobile Strong Customer Authentication Under PSD2: Comparisons and Considerations’, provides the framework for a common approach to strong customer authentication (SCA) in remote payment transactions, based on mobile devices.

In the wake of rising digital transactions and the high levels of fraud accompanying them, multi-factor authentication is increasingly regarded as the baseline for payment security, typically requiring payers to verify something they possess (such as a mobile phone) and something they know (such as a PIN) or something specific to who they are (such as a fingerprint).

PSPs and financial services without multi-factor authentication covering their entire customer base now face the task of developing or sourcing a multi-factor authentication service. With the new guidelines of the Regulatory Technical Standards leaving only an 18-month period from now until mandatory compliance, we can expect a spike in the demand for authentication products.

Mobile Connect, the identity solution developed by the mobile industry, is one such PSD2-compliant product. Designed for a range of sectors, Mobile Connect is supported by more than 60 mobile network operators in over 30 countries, thereby offering PSPs secure authentication on a global scale.

As well as serving existing PSPs and financial solutions making the transition to multi-factor authentication, Mobile Connect could also play a role in supporting new entrants to the market following PSD2’s broadening of the definition of ‘payment service provider’.

Read the full report

Back

Digital Identity: Trends and News in China and South East Asia We are living through an exciting time for digital commerce in Asia. According to the Asian Development Bank, e-commerce in Asia as a whole now makes up around a quarter of all a...

Read more | See all Identity Resources

MWCS18 Identity Innovation Labs Presentations The Identity Innovation Labs at Mobile World Congress Shanghai 2018 were a set of three stand-alone industry discussions on the latest developments in digital identity. Featuring...

Read more | See all Identity Resources

Turkcell: Taking the next step in Identity with Mobile Connect Turkcell are now leveraging Mobile Connect to actively develop services they believe will be the basis of a new revenue stream. In this case study find out what steps Turkcell ar...

Read more | See all Identity Resources

Mobile Connect live use cases The Mobile Connect live use cases are a list of examples of how the identity solution has been deployed with various services.  Each use case harnesses one or more Mobile Connec...

Read more | See all Identity Resources

Digital Identity: Realising Smart Cities As we look further ahead to the mid-century, intelligent public services will move beyond the mechanical: two decades from now, increasingly complex and sensitive aspects of our ...

Read more | See all Identity Resources

Industry Seminar Presentations from MWC18: Regulations and Attributes   Download presentations from the Mobile World Congress identity seminars Watch on-demand seminar videos from the Mobile World Congress identity seminars Security and Privac...

Read more | See all Identity Resources

Identity Innovation Labs Shanghai: Operators the Natural Gatekeepers o “And what do people need when their lives go online? Digital identity.” -Julian Gorman, Head of Strategic Engagement in Asia, GSMA  As delegates gathered for the Mo...

Read more | Visit Identity Blog

Realising Asia’s Potential: Identity Innovation Labs and the Future Digital identity services have an essential strategic role in the future of online commerce. The growth of e-commerce has been remarkable in Asia over the last year, where it now...

Read more | Visit Identity Blog

Mobile Connect Helping to Secure Online Commerce in India India’s economy is becoming increasingly mobile-centric. 39 million smartphones were sold on the subcontinent in Q3 2017 alone – up 20% on the previous year – and almost 70...

Read more | Visit Identity Blog

Industry Seminar Presentations from MWC18: Regulations and Attributes   Download presentations from the Mobile World Congress identity seminars Watch on-demand seminar videos from the Mobile World Congress identity seminars Security and Privac...

Read more | Visit Identity Blog

Digital Identity Demonstrates its Crucial Role in Transforming Healthc Across the world, healthcare continues to be one of the biggest sources of public expenditure. As such, there is increasing pressure to find more efficient means of delivery. Dig...

Read more | Visit Identity Blog

Identity Now Key to Statecraft Say Experts One of the chief concerns of those in the identity ecosystem is the formulation of policy befitting for the emerging digital age. With the recent completion of PSD2 and successiv...

Read more | Visit Identity Blog

Mobile Connect Workshop: Delivering commercial success through identit September 07, 2018 In this workshop, participants will have the opportunity to learn the value and commercial scalability of mobile-based identity services in the Asia-Pacific region. The event is ...

Read more | See all Identity Events

Mobile Connect at Mobile World Congress Americas 2018 September 12, 2018 Join the GSMA’s Identity programme at Mobile World Congress Americas 2018 to discover and shape the future of the digital identity. Through a series of seminars, exhibition...

Read more | See all Identity Events

Mobile Connect Seminar: Reducing Fraud through Secure Authentication a September 12, 2018 This seminar will focus on preventing fraud by providing strong digital authentication. Featuring a range of high level experts, this session is designed to help mobile operators...

Read more | See all Identity Events

Mobile Connect at Mobile 360 – Europe September 18, 2018 Orange´s Mobile Connect et Moi service will be featured at the Mobile 360 – Europe event showcase area. Experience how Orange subscribers can access their government data secu...

Read more | See all Identity Events

Contact GSMA Legal Email Preference Centre Copyright © 2018 GSMA. GSM and the GSM Logo are registered and owned by the GSMA.