Skip to main content

Strong Customer Authentication

Strong Customer Authentication (SCA) is a security protocol that requires customers to provide at least two forms of authentication before completing an online transaction. It is designed to reduce fraud and increase security for online transactions, especially for electronic payment systems that use credit cards, bank transfers, and e-wallets.

Under SCA, customers are required to provide two or more of the following forms of authentication:

  • Something the customer knows (such as a password or PIN)
  • Something the customer has (such as a mobile phone or a smart card)
  • Something the customer is (such as a fingerprint or facial recognition)

SCA is mandated by the European Union's Payment Services Directive 2 (PSD2) for all electronic payment transactions initiated by customers in the European Economic Area (EEA). It aims at protecting customers' financial data and prevent unauthorized access to their accounts.