Strong Customer Authentication (SCA)

based on the use of two or more elements categorized as knowledge (something only the user knows) such as passwords or PINs, possession (something only the user possesses) such as security tokens and inherence (something the user is) such as fingerprints or facial biometric. These must be independent from one another, in that the breach of one does not compromise the reliability of the others and is designed in such a way as to protect the confidentiality of the authentication data.