Visa Payment Passkey

Start a Project Start a Project API Overview API Overview API Reference API Reference
Navigate to...
keyboard_arrow_down

Visa Payment Passkey for Merchants & Payment Service Providers

Visa Payment Passkey is a method for verifying payments by enabling device-based authentication across all participating merchants and all Visa Card-Not-Present acceptance solutions.

This solution is built on industry-leading FIDO (Fast Identity Online) protocols, which use public-key cryptography to enhance security. Unlike traditional passwords, Visa Payment Passkey employs unique keys for each PAN, making it more resistant to phishing attacks, interception, and theft. The private key is securely stored on the cardholder’s device and never transmitted over the network, ensuring that malicious websites cannot access it. During verification, only the previously registered device that was enrolled in Visa Payment Passkey can be used by referencing the unique keys created during enrollment, providing an additional layer of security.

 

Merchant & PSP API Suite

Visa Payment Passkey is a suite of APIs for Visa partners and Integrators. 

The VPP API suite includes the following:

  1. Create Passkey API– Generate registration URL that can be used to redirect cardholders for Visa Payment Passkey enrollment.

  2. Authenticate Using Passkey API – Determine if cardholder has existing passkey and generate authentication URL that can be used to redirect cardholder for Visa Payment Passkey authentication when applicable.

Note: Additional client-side integration is required to enable E2E Visa Payment Passkey functionality.

Connecting to the VPP Platform

There are two main components of connecting with the VPP platform. Please coordinate with your Integration Owner and your regional Visa representative for this step.

  1. Onboarding to the VPP Platform - The VPP Integration Support team will aid in this step. During this process, the VPP Integration Support team will create an APN and vendorUniqueId for the Integrator. This APN acts as the unique identifier that will be used in subsequent steps to establish connections and ensure proper routing. 
  2. Provisioning with VPP - The VPP Integration Support team will set provisioning metadata for VDC integration testing with VPP for test VDC client. 

 

Onboarding to the Visa Developer Center

  1. To access VPP APIs, clients must agree to adhere to the VPP Product Terms. 
  2. Developers must register, and then log in to, Visa Developer Center (VDC) to obtain required credentials in the form of API keys and other cryptographic key material. See the Visa Developer Center Quick Start Guide for further details on access.
    • In the sandbox environment, VPP APIs can be used by any developer with registration and acceptance of VDC Terms and Conditions; however, only participating Visa partners will be able to use these APIs in production. In the event of any conflict between this specification and the VDC Agreement, the VDC Agreement shall govern and control.
    • You can also reference the Visa Developer Onboarding page for a high level guide on what to expect when onboarding to the Visa Developer Center.
  3. Contact your Visa representative for further details.

 

Project Creation

  1. Once the appropriate credentials have been created, and a registered user is logged into VDC, a new project can be created to add the VPP APIs. Refer to Create a Project video for more details.
  2. Additional details are available in the Visa Developer Quick Start Guide including documentation on Certificate ExpirationOutbound Configuration and Message Encryption.
  3. Once you have created your project and added the appropriate VPP APIs, you can Develop and Test your Project.
    • Note that prior to the APIs release for self-service, please email [email protected] to request access to the VPP product. Visa Developer Customer Support will aim to respond to your request in 24-48 hours. 

 

Going Live

  1. Once you are ready to promote your project from the sandbox to the production environment, you may initiate the process to go live and commercialize your project. To submit your project to Visa for review and approval, simply go to the dashboard and select "Going Live". The dashboard walks you through the detailed steps and processes to complete the application for the credentials for your project. 
    • In addition, during app promotion, the VDC admin will get the vendorUniqueId from the Integrator Partner when the provisioning call is triggered. It will be sent in a secure mail to the Integrator Partner.
  2. Refer to the Visa Developer Center - Going Live page for a full step-by-step guide. 
  3. Please reach out to Visa Developer Center support team via the "Contact Us" function at the bottom of any VDC page, or contact your regional Visa representative with any questions or onboarding support.

 

Project Testing & Production Validation

Once you have integrated the credentials into your project, you are all set to begin the testing and/or the production validation processes. Please refer to the detailed steps on Visa Developer Center - Project Testing and Production Validation for this process. 

 

Merchant Visa Payment Passkey User Experience

Enrollment at Merchant Checkout after Successful ID&V

Registration at merchant checkout after successful ID&V

Authentication at Merchant Checkout

Authentication at Merchant Checkout