> Confirm in an app, enter full password in some cases, but that’s it
That's only on the bank's side. There's a major problem where the merchant later cancels the transaction on their side despite successful 3D-Secure.
Either 3DS doesn't actually offload liability (so even accepting a fully 3DS-verified transaction is a risk), or merchants aren't up to date on what they are and aren't liable for.
That's only on the bank's side. There's a major problem where the merchant later cancels the transaction on their side despite successful 3D-Secure.
Either 3DS doesn't actually offload liability (so even accepting a fully 3DS-verified transaction is a risk), or merchants aren't up to date on what they are and aren't liable for.