Purpose:

When credit card payment is selected, 3D Secure authentication may be required.

This section provides information about 3D Secure authentication and the booking flow from payment method selection to reservation completion.

1. Prepayment flow and Reservation Completion

1. Because GMO’s 3D Secure feature is implemented, the screen shown below is displayed for all card brands, including VISA, Mastercard, JCB, and AMEX.
2. After entering the one-time password or other required information and selecting [confirmation], the payment is completed and the reservation is confirmed.
3. The merchant name is displayed as “tripla”.

1. Depending on the card, entry of the password registered with the credit card may be required.
2. The actual authentication method varies depending on the identity verification service provided by each card issuer.

2. If 3D Secure Authentication Fails

1. If the security code is entered incorrectly, the reservation status becomes "payment_pending".
   This pending data is automatically cleared around midnight on the following day.
2. If authentication fails, please verify the card details or make a new reservation using a different credit card.
3. Even credit cards that have been used successfully in the past may display an error and cannot be used.
4. Credit cards that do not support 3D Secure cannot be used.
   For details on 3D Secure compatibility, please contact the card issuer.
5. Even if a card supports 3D Secure, additional authentication may be required under the frictionless flow.
   If 3D Secure is not enabled in such cases, the card may not be usable.

2. About 3D Secure 2.0

2.1 What is 3D Secure 2.0

1. 3D Secure 2.0 is a system designed to make online payments more secure.
   
2. With 3D Secure 2.0 identity verification was performed by using two authentication flows: the "Frictionless Flow" and the "Challenge Flow".
   

2.2 Frictionless Flow

Frictionless Flow is a risk-based authentication process in which a fraud detection engine evaluates factors such as the customer’s behavior, profile information, and transaction details.

2.3 Challenge Flow

The challenge flow is executed only when additional authentication is required after being evaluated under the frictionless flow.

In addition to password authentication, this flow may include dynamic password authentication (such as one-time passwords sent via SMS or email) or biometric authentication (such as fingerprint or facial recognition).

1. The actual authentication method varies depending on the identity verification service provided by each card issuer.
   
2. The card issuer decides whether a transaction uses the Frictionless Flow or requires the Challenge Flow.
   
3. Because issuers are responsible for chargebacks under 3D Secure 2.0, transactions may still be declined at authorization even after successful authentication.