What is 3D Secure payment?

paymentdollar is dedicated to providing secure online payment methods. That’s why we’ve added an extra level of security for Visa and MasterCard payments, which protects you from the unauthorized use of your credit card. 3-D Secure technology consists of the programs Verified by Visa and MasterCard SecureCode.

logo_verifiedbyvisa logo_mastercode

After you enter your credit card details in credit card payment page , You will direct to page requesting your personal Authorization code that has been sent to your mobile number that registered in your credit card bank issuer system.


There are limit time to enter your Authorization code if over time, the payment page will be appears ” FAILED CREDIT CARD VISA 3D ” and page will back to Credit Card payment Page.

If your credit card does’t support 3D SECURE PAYMENT , The page will auto show ” FAILED CREDIT CARD VISA 3D when you ENTER ” PROCESS ”


If you haven’t yet registered with Verified by Visa or MasterCard SecureCode, you’ll need to activate this feature first. You can do this during the payment process, or activate it in advance through the Visa or MasterCard website.


3D Secure offers an extra layer of protection for cardholders and merchants. Customers are asked to enter an additional password after checkout completion to “verify” they are truly the cardholder. But, like any extra step in a checkout process, 3D Secure can have a negative impact on conversion rates. Cardholders frequently forget passwords they’ve created, and balk at long processes and forms.

How 3D Secure Works

Developed by Visa and licensed by MasterCard, 3D Secure stands for “Three Domain Secure” – the domains being the acquiring bank (retailer’s bank), the issuing bank (the cardholder’s bank) and the infrastructure that supports the 3D Secure protocol.

On participating sites, after completing the merchant’s checkout process, the customer is asked to provide a password (if previously enrolled) or to set up his or her Verified By Visa or MasterCard SecureCode credentials. The customer is either redirected to the issuing bank’s website for authorization, or kept within the merchant’s own checkout process through a frame.

Cards not eligible, such as Discover and American Express (which has its own authentication product, Safekey, available only in the UK and Singapore), Visa gift cards and business credit cards with multiple names on the account are detected by the system and not prompted to enroll or enter a password.

An unenrolled Visa, Maestro or MasterCard customer is allowed to opt out of the scheme a minimum of 3 times (depending on the card issuer), up to an unlimited number of opt outs. In some cases, the card issuer may make a risk-based decision to require authentication the first, second or third time). If a cardholder opts out the maximum number of times, he or she will no longer be presented with a “No thanks” button, and may not be able to shop online with online retailers that use 3D Secure until enrolled (this depends on the card issuer).

With Visa, the online retailer may decide whether to process an order for an opt-out or incorrect password, and is protected from chargebacks simply from making the attempt to authenticate through the Visa Attempts program. MasterCard does not offer the same protection if the cardholder opts out.

How payment, authorisation and settlement work

Internet Authentication is an automated process that’s designed to be simple and straightforward for you and your customers. Everything you’ll need to know about the payment, authorisation and settlement is explained in the sections below.


Once you’ve implemented Internet Authentication on your website, the process is fully integrated into your usual payment system.


1. A customer browsing on the internet decides to buy from you with a Visa, MasterCard or Maestro card.
2. Your payment pages (for instance, ePDQ) communicate with the Visa/MasterCard Directory, which then contacts the card issuer.
3. The card issuer confirms whether the cardholder has registered for Internet Authentication.
4. If the card issuer supports Internet Authentication, a ‘pop-up’ or ‘in-line’ web window appears on the cardholder’s screen. If not, the transaction proceeds to authorisation at step 7.
5. The card issuer asks for the cardholder’s Internet Authentication password, and accepts or rejects it.
6. If the password is correct, the payment process continues (if incorrect, the transaction may be stopped).
7. Your payment software (for instance, ePDQ) authorises the payment details and passes them to Barclaycard or other acquirer for settlement.

Click on the links below to download more information:

Read Visa merchant best practice guide PDF (320KB)