ACS Cloud

HiTRUST's Access Control Server (ACS) Cloud is a cloud-native SaaS solution enabling issuers to securely authenticate cardholder transactions, delivering enhanced security without compromising on user experience.

Benefits

Requiring no hardware investment, our platform is the optimal investment for issuers of all sizes. With the APIs designed for easy integration, issuers can enjoy quick deployment without significant infrastructure changes.

Leading Cloud Providers

HiTRUST cloud solutions are built on leading cloud providers such as Amazon Web Services and Google Cloud Platform. Ready to connect wherever you are.

Ensured Compliance

As a long-standing market leader, HiTRUST commits to providing EMVCo, PCI 3DS, PCI DSS, and PSD2 certified and compliant 3-D Secure solutions. Over the Cloud, we ensure your business complies to the latest standards required.

Available through
Compliance and Certification

ACS Cloud Features

twbs
Industrial Compliance

The cloud service complies with major card schemes (Visa, Mastercard, JCB, UnionPay, Discover, AMEX).

twbs
Supports Up to 3DS 2.3

HiTRUST ACS Cloud support versions 2.1 and 2.2, with ongoing upgrades to 2.3+ under EMV standards.

twbs
Multiple authn methods

Our platform provides multiple authentication methods, including OTP (Email, SMS) and in-app.

twbs
API-driven Integration

Your business can choose to redirect cardholders to our hosted page or opt for a pure API-based approach.
twbs
Continuous Updates

Eliminates the need for on-premises deployment, with updates seamlessly handled by HiTRUST.

twbs
Multi-region Deployment

Designed for global scalability, with support for choosing data centers closer to your business.

Available Authentication Methods

Understanding the diverse end-user preferences in the market, HiTRUST ACS Cloud Service offers from the most common, to the most phishing-resistant authentication method.
twbs
SMS OTP

HiTRUST ACS Cloud can be connected to support customer authentication via SMS OTP.

twbs
Email OTP

Authentication for online transactions can also be supported through email OTP, with just a click away.

twbs
In-APP

If you prefer to verify your customers through your apps, HiTRUST supports it as an OOB method.

twbs
FIDO Passwordless

Eliminate the need for passwords by choosing FIDO and public key cryptography technology.

ACS Cloud API Testing

Simplifying ACS testing for issuers.
Trust HiTRUST for a smooth and reliable deployment of your ACS Cloud solution.

Test 3DS APIs seamlessly with your Card Management System provider and Hardware Security Module (HSM) to ensure seamless integration and optimal performance. Our systematic implementation and testing plans, including System Integration Testing (SIT), User Acceptance Testing (UAT), and Production Integration Testing (PIT) if necessary, provide a structured approach to validate your 3DS implementation thoroughly.

Experience HiTRUST's robust Sandbox for comprehensive 3D Secure testing. It includes ACS, 3DS Server, advanced Merchant simulator, and demo apps for iOS and Android. Confidently test all scenarios before going live.

HiTRUST's in-house developed merchant simulator offers extensive customization for 3DS testing. Fine-tune parameters like card and shipping details, 3DS message category, authentication indicators, device channel, and passwordless scenarios for precise testing.

Our comprehensive network testing ensures all 3DS APIs are correctly configured within your network and firewall. We verify every detail to align seamlessly with your infrastructure, guaranteeing optimal performance and security.

Effortlessly enroll any card scheme and BIN range into our 3DS testing environment. Our flexible platform ensures thorough testing across diverse scenarios for comprehensive validation of your 3DS implementation.

Simulate all transaction scenarios seamlessly with our test environment. It covers both Payment (PA) and Non-payment Authentication (NPA) transactions, including OTP, OOB, and FIDO authentication methods, providing thorough testing across all spectrums.

Simulate all transaction scenarios seamlessly with our test environment. It covers both Payment (PA) and
Non-payment Authentication (NPA) transactions, including OTP, OOB, and FIDO authentication methods, providing thorough testing across all spectrums.

Receive a detailed 3DS test report from HiTRUST before going live.

Supported Authentication Channels
  • Browser (PA & NPA)
  • App (PA & NPA)
  • 3RI (NPA)
Pre-defined Test Scenarios
  • Authentication success - frictionless (Y)
  • Authentication challenged - challenge (C)
  • Authentication failed (N)
  • Authentication rejected (R)

ACS Cloud Service Onboarding Overview

Our ACS Cloud Service Onboarding Process typically spans a few weeks depending on your system's readiness and the needed support. Below is an overview of the Process.

HiTRUST

• Introduce transaction processing flows.
• Provide ACS API Specifications.

• API testing.
• Prepare SIT environment.

• Set up Test environment.
• Provide test cases.
• Conduct testing.
• Provide SIT Test report and UAT test cases.

• Prepare production environment.

• Ensure system availability.
• Restore system outrage.

Your business

• Review the transaction processing flow and define business needs.
• Review API Specifications.

• Develop API.
• Confirm supported languages.
• Provide challenge information text.

• Provide SIT API testing environment.
• Provide testing card numbers and phone numbers.

• Conduct UAT testing.
• Review testing results.

• BIN enrollment.
• Provide production information (BINs and business rules for challenge/frictionless flow).
• Confirm API production environment.
• Confirm production validation date.
• Confirm the final production date.

• User setup in HiTRUST ACS Cloud Service backend system.
• Transaction query.

Explore more