Amex Safekey Registration
American Express SafeKey is a security solution that leverages global industry standards to detect and reduce online fraud—adding an extra layer of security when Card Members shop online or on their mobile devices. SafeKey 2.0 is based upon EMV® 3-D Secure protocol. We want you to feel confident when you make a purchase with your American Express® Card. That's why SafeKey uses the latest technology to help protect you ag. American Express SafeKey® is an authentication service which helps prevent unauthorized use of your American Express® Card online by confirming your identity with additional verification information. 3-D Secure is a protocol designed to be an additional security layer for online credit and debit card transactions. The name refers to the 'three domains' which interact using the protocol: the merchant/acquirer domain, the issuer domain, and the interoperability domain. American Express SafeKey is a security solution that leverages global industry standards to detect and reduce online fraud—adding an extra layer of security when Card Members shop online or on their mobile devices. SafeKey 2.0 is based upon EMV® 3-D Secure protocol.
Online security that helps to protect businesses and helps them prosper
American Express SafeKey® is a 3-D Secure® authentication tool that works to reduce online fraud by confirming the Cardmember's identity with an additional password. Whether you're a Merchant or an Acquirer, with American Express SafeKey®, you can leverage existing 3-D Secure® technology to minimise fraud through a consumer friendly solution.
There are several ways SafeKey® can help Merchants optimise operational efficiency by reducing the costs of fraud
|
Merchants may increase profits
|
Key Steps to Start Using SafeKey
Select a certified 3DS Server Provider (see www.amexenabled.com for a list of providers who are certified for SafeKey)
Work with your 3DS Server to complete technical set up for SafeKey
Ensure the SafeKey logo is visible on your website and at checkout
Paradise casino winners. Contact your American Express Middle East Merchant Relationship Manager, or email MerchantSafeKey@americanexpress.com.bh if you have any questions
1. How can a Merchant begin enrollment, certification and testing for American Express SafeKey®?
Amex Safekey
Select a certified 3DS Server Provider (see www.amexenabled.com for a list of providers who are certified for SafeKey)
Work with your 3DS Server to complete technical set up for SafeKey
Ensure the SafeKey logo is visible on your website and at checkout
Contact your American Express Middle East Merchant Relationship Manager, or email MerchantSafeKey@americanexpress.com.bh if you have any questions
2. Can SafeKey be turned off by the Merchant after implementation?
Technically, SafeKey can be switched off by the Merchant. However, please note that the intention of SafeKey is to reduce instances of online Card fraud. As such, American Express does not recommend turning off SafeKey at any time in accordance with guidelines.
3. How is a Card authenticated and authorised when both the Merchant and Cardmember are enrolled in American Express SafeKey?
- During checkout, the Cardmember inputs their payment method as American Express and provides the Card number.
- The Merchant Plug-in ('MPI') component running at the Merchant will communicate with the American Express Directory Server to determine if the American Express Card is enrolled in American Express SafeKey.
- The American Express Directory Server will communicate with the Card Issuer to determine if the Card is enrolled in the service.
- The Issuer will respond with a status of 'Y' if the Card is enrolled, along with a URL where the Cardmember needs to be sent for authentication (the Authentication Site).
- The Merchant application will automatically redirect the Cardmember to the Authentication Site.
- At the Authentication Site, the Issuer will display the password page where the Cardmember will input the password. The Issuer will send a response to the Merchant with the authentication result. For security, the message will be digitally signed.
- The MPI will validate the signature and advise the Merchant of the authentication result.
- The Merchant can approve or decline the transaction based on the authentication result.
4. Will Merchant Terms and Conditions require changes to support the American Express SafeKey programme?
5. What is the definition of an attempted transaction?
An American Express SafeKey authentication attempt occurs when a Merchant requests to authenticate the Cardmember but the Cardmember or Issuer has not been enrolled in the SafeKey programme, and both the Merchant and Issuer are in SafeKey-designated markets. In this scenario, valid authentication data [e.g., American Express Verification Value ('AEVV') and Electronic Commerce Indicator ('ECI')] value will be required in the Authorisation and Submission messages as evidence of the attempt.
Amex Safekey One-time Code
6. Will a participating Merchant obtain a Fraud Liability Shift on all Internet transactions?
No. Merchants can only obtain FLS on fully authenticated SafeKey charges. For non-authenticated SafeKey charges, or standard e-commerce charges, the standard Card Not Present Card acceptance policy applies and the Merchant is liable if the Cardmember later disputes the charge.
7. Where can a Merchant obtain Authorisation and Submission specifications for American Express SafeKey?
For Additional information on which market standard specifications currently support American Express SafeKey, Merchants may contact their American Express Middle East Relationship Manager, or email MerchantSafeKey@americanexpress.com.bh
Amex Safekey Registration
American Express SafeKey is a security solution that leverages global industry standards to detect and reduce online fraud—adding an extra layer of security when Card Members shop online or on their mobile devices. SafeKey 2.0 is based upon EMV® 3-D Secure protocol. We want you to feel confident when you make a purchase with your American Express® Card. That's why SafeKey uses the latest technology to help protect you ag. American Express SafeKey® is an authentication service which helps prevent unauthorized use of your American Express® Card online by confirming your identity with additional verification information. 3-D Secure is a protocol designed to be an additional security layer for online credit and debit card transactions. The name refers to the 'three domains' which interact using the protocol: the merchant/acquirer domain, the issuer domain, and the interoperability domain. American Express SafeKey is a security solution that leverages global industry standards to detect and reduce online fraud—adding an extra layer of security when Card Members shop online or on their mobile devices. SafeKey 2.0 is based upon EMV® 3-D Secure protocol.
Online security that helps to protect businesses and helps them prosper
American Express SafeKey® is a 3-D Secure® authentication tool that works to reduce online fraud by confirming the Cardmember's identity with an additional password. Whether you're a Merchant or an Acquirer, with American Express SafeKey®, you can leverage existing 3-D Secure® technology to minimise fraud through a consumer friendly solution.
There are several ways SafeKey® can help Merchants optimise operational efficiency by reducing the costs of fraud
|
Merchants may increase profits
|
Key Steps to Start Using SafeKey
Select a certified 3DS Server Provider (see www.amexenabled.com for a list of providers who are certified for SafeKey)
Work with your 3DS Server to complete technical set up for SafeKey
Ensure the SafeKey logo is visible on your website and at checkout
Paradise casino winners. Contact your American Express Middle East Merchant Relationship Manager, or email MerchantSafeKey@americanexpress.com.bh if you have any questions
1. How can a Merchant begin enrollment, certification and testing for American Express SafeKey®?
Amex Safekey
Select a certified 3DS Server Provider (see www.amexenabled.com for a list of providers who are certified for SafeKey)
Work with your 3DS Server to complete technical set up for SafeKey
Ensure the SafeKey logo is visible on your website and at checkout
Contact your American Express Middle East Merchant Relationship Manager, or email MerchantSafeKey@americanexpress.com.bh if you have any questions
2. Can SafeKey be turned off by the Merchant after implementation?
Technically, SafeKey can be switched off by the Merchant. However, please note that the intention of SafeKey is to reduce instances of online Card fraud. As such, American Express does not recommend turning off SafeKey at any time in accordance with guidelines.
3. How is a Card authenticated and authorised when both the Merchant and Cardmember are enrolled in American Express SafeKey?
- During checkout, the Cardmember inputs their payment method as American Express and provides the Card number.
- The Merchant Plug-in ('MPI') component running at the Merchant will communicate with the American Express Directory Server to determine if the American Express Card is enrolled in American Express SafeKey.
- The American Express Directory Server will communicate with the Card Issuer to determine if the Card is enrolled in the service.
- The Issuer will respond with a status of 'Y' if the Card is enrolled, along with a URL where the Cardmember needs to be sent for authentication (the Authentication Site).
- The Merchant application will automatically redirect the Cardmember to the Authentication Site.
- At the Authentication Site, the Issuer will display the password page where the Cardmember will input the password. The Issuer will send a response to the Merchant with the authentication result. For security, the message will be digitally signed.
- The MPI will validate the signature and advise the Merchant of the authentication result.
- The Merchant can approve or decline the transaction based on the authentication result.
4. Will Merchant Terms and Conditions require changes to support the American Express SafeKey programme?
5. What is the definition of an attempted transaction?
An American Express SafeKey authentication attempt occurs when a Merchant requests to authenticate the Cardmember but the Cardmember or Issuer has not been enrolled in the SafeKey programme, and both the Merchant and Issuer are in SafeKey-designated markets. In this scenario, valid authentication data [e.g., American Express Verification Value ('AEVV') and Electronic Commerce Indicator ('ECI')] value will be required in the Authorisation and Submission messages as evidence of the attempt.
Amex Safekey One-time Code
6. Will a participating Merchant obtain a Fraud Liability Shift on all Internet transactions?
No. Merchants can only obtain FLS on fully authenticated SafeKey charges. For non-authenticated SafeKey charges, or standard e-commerce charges, the standard Card Not Present Card acceptance policy applies and the Merchant is liable if the Cardmember later disputes the charge.
7. Where can a Merchant obtain Authorisation and Submission specifications for American Express SafeKey?
For Additional information on which market standard specifications currently support American Express SafeKey, Merchants may contact their American Express Middle East Relationship Manager, or email MerchantSafeKey@americanexpress.com.bh
8. Who should a Merchant contact for additional information?
For additional details, Merchants can contact their American Express Middle East Merchant Relationship Manager, or email MerchantSafeKey@americanexpress.com.bh
9. What criteria must be satisfied for a Merchant to qualify for the Fraud Liability Shift?
In order to be eligible for the Fraud Liability Shift a Merchant must:
- Use all other American Express online fraud prevention tools available in their market
- Utilize SafeKey
- Maintain a Fraud-to-Gross (FTG) level of 1% or less for all SafeKey transactions