ISVforce Guide

ISVforce Guide: Build and Distribute AppExchange Solutions
Get Ready to Distribute on AppExchange
Use Managed Packages to Develop Your AppExchange Solution
Manage Orgs with Environment Hub
Architectural Considerations for Group and Professional Editions
Security Requirements for AppExchange Partners and Solutions
Pass the AppExchange Security Review
Manage Your AppExchange Listings
AgentExchange Go-To-Market App Guide
Sell on AppExchange with Checkout
AppExchange Checkout
Pricing Plans in AppExchange Checkout
Payment Methods in AppExchange Checkout
How Is Revenue Shared in AppExchange Checkout?
Get Started with AppExchange Checkout
Support International Payments in AppExchange Checkout
Collect VAT for AppExchange Checkout Transactions
Strong Customer Authentication for AppExchange Checkout
What Is Strong Customer Authentication?
How Strong Customer Authentication Affects AppExchange Checkout
Strong Customer Authentication Best Practices for AppExchange Checkout
Manage AppExchange Checkout Subscriptions
AppExchange Checkout FAQs
Checkout Management App
Report Orders to Salesforce with the Channel Order App
Provide Free Trials of Your AppExchange Solution
OEM User License Guide
PDF

What Is Strong Customer Authentication?

Strong customer authentication (SCA) enhances the security of online payments with an identity verification step. SCA is required for online payments in the European Economic Area, including AppExchange Checkout payments.

SCA is mandated by the Second Payment Services Directive (PSD2), which introduces laws to enhance the security of online payments in the European Economic Area. Starting on September 14, 2019, customers who live in this region may be asked to perform an identity verification step to make purchases online.

A customer can verify their identity with a password, a code delivered to a mobile device, or using biometric data, such as a fingerprint. This verification step applies to one-time purchases and recurring payments, such as subscriptions. The customer’s bank or credit card issuer determines when to request that the customer authorize the purchase by verifying their identity.

Starting on September 14, 2019, Checkout automatically integrates SCA into the payment experience for European customers. To learn more about SCA, go to https://stripe.com/docs/strong-customer-authentication.