到 2027 年,全球电商销售额市场价值预计将增长到 6.35 万亿美元。随着客户越来越青睐数字交易,未能适应这一趋势的企业有可能被竞争对手甩在后面,失去潜在客户和收入。
线上付款体验可能会影响客户成功完成的交易数量。在一项针对在线购物者的调查中,被放弃的购物车中有 18% 归因于低效或繁琐的结账流程。随着电商的增长,与线上付款相关的网络犯罪也在上升。企业需要通过为客户创造简单、高效的线上付款体验来解决这两个问题,这种体验也要非常安全,具备打击不断演变的欺诈 企图的能力。
支付网关在实现这一复杂而重要的目标方面发挥着关键作用。下面,我们将讨论企业需要了解的信息:支付网关是什么、它们如何工作、它们在电商中的关键作用以及如何在更广泛的支付处理系统中运作。
目录
- 什么是支付网关?
- 支付网关是做什么的?
- 支付网关和支付终端有什么区别?
- 支付网关和支付处理商有什么区别?
- 支付网关如何工作?
什么是支付网关?
支付网关是一种技术平台,在电子金融交易中充当中介。它使线下和线上企业能够以安全高效的方式接受、处理和管理各种支付方式,例如信用卡、借记卡和数字钱包。支付网关在一个平台上弥合了客户、企业和各自金融机构之间的差距,通常在每次处理交易时收取费用。
支付网关是做什么的?
支付网关执行几个重要功能,以确保安全、高效和准确的支付:
加密
当客户在网上结账过程中提交他们的支付信息时,支付网关会对数据进行加密。这可以保护该信息在客户设备、企业服务器和金融机构之间传输时免受未经授权的访问或盗窃。与支付处理商的连接
支付网关连接企业面向客户的结账和支付处理提供商。授权
支付网关将加密的交易数据转发给企业的收单银行,然后收单银行将该信息发送给客户的发卡行或相关支付处理商。发卡行或支付处理商会在批准或拒绝交易之前验证交易明细,包括客户的账户余额和支付方式的有效性。支付网关接收响应并将其发送回企业。数据收集和报告
支付网关通常为企业提供有价值的数据,帮助他们分析和管理交易。这可能包括交易历史记录、退款管理和其他数据点,以帮助企业识别趋势并改进其付款运营。欺诈检测和预防
为将欺诈性交易 的风险降到最低,支付网关使用先进的安全措施,例如欺诈检测算法、地址验证系统 (AVS) 和银行卡验证码 (CVV) 检查。这些措施有助于在处理潜在的欺诈性交易之前识别和阻止这些交易。
支付网关和支付处理商有什么区别?
支付网关和支付处理商是电子金融交易的两个重要组成部分,尤其是在电商中,但它们具有不同的功能。下面介绍这两者的差异:
支付网关
角色:在线上交易期间,支付网关充当客户、企业及其各自金融机构之间的中介。它安全地传输敏感的支付信息并协助交易授权。
主要功能:支付网关对交易数据进行加密,将其转发给企业的收单银行或支付处理商,接收交易批准或拒绝响应,并将交易状态传达给企业的网站或应用。
安全性:支付网关采用安全措施来防止欺诈性交易,并在支付数据进入企业支付系统时对其进行保护。支付网关使用加密协议(SSL 或 TLS)、欺诈检测算法、AVS 和 CVV 检查等措施来保护敏感数据并防止欺诈性交易。
集成:支付网关通常使用 API 或预构建插件与电商平台、网站或移动应用集成。
支付处理商
角色:支付处理商有时称为商家服务提供商,是一家处理交易的企业。这包括客户的发卡行、企业的收单行和相关支付网络(例如 Visa、Mastercard)之间的资金授权和结算。
主要功能:支付处理商会验证交易明细,检查客户的账户余额和支付方式的有效性,批准或拒绝交易,并在结算过程中协助完成客户和企业账户之间的资金转移。
安全性:虽然支付网关更侧重于在销售点验证交易和防止支付欺诈,但支付处理商采用安全措施来维护支付数据的最高保护标准。支付处理商必须遵守 PCI DSS 要求,以确保安全处理和存储持卡人信息。
与企业的关系:支付处理商通常与企业有直接的合同关系,包括向其提供商家账户。这种类型的银行账户允许企业接受和处理电子支付。
支付网关是一种安全传输和协助线上交易授权的工具,而支付处理商是与商家合作处理的企业,包括所涉各方之间的授权和资金结算。例如,PayPal 是支付处理商,但不是支付网关。这两个组成部分协同工作,以确保顺畅、安全和高效的电子金融交易。
|
Payment gateway |
Payment terminal |
|
|---|---|---|
|
Primary environment |
Online and digital payments |
In-person, brick-and-mortar payments |
|
Where it’s used |
Ecommerce websites, mobile apps, digital platforms |
Retail stores, restaurants, and physical locations |
|
Transaction type |
Card-not-present and online transactions |
Card-present and contactless transactions |
|
How it processes payments |
Acts as an intermediary that encrypts data, authorizes transactions, and routes payments between the customer, business, and banks |
Reads cards or contactless devices, sends transaction data for authorization, and completes the payment in person |
|
Hardware required |
No physical hardware required |
Requires a physical POS or card terminal |
|
Security measures |
SSL/TLS encryption, fraud detection, AVS, CVV checks |
PCI DSS compliance, encrypted card data, EMV chip and contactless security |
|
Integration and setup |
Integrated via APIs or plugins into websites or apps |
Installed as a physical device and connected to a POS system or network |
|
Typical use case |
Online checkout and digital payments |
In-store checkout and face-to-face transactions |
Where each solution is used
Payment gateway: A payment gateway is primarily designed for online transactions, and caters mainly to ecommerce websites, mobile applications, and other digital platforms.
Payment terminal: Also known as a point-of-sale (POS) terminal or credit card terminal, a payment terminal is a physical device used in brick-and-mortar stores, restaurants, and other in-person retail environments. It allows customers to make payments using credit cards, debit cards, or contactless payment methods such as smartphones with near-field communication (NFC) technology.
While payment gateways are typically used for online transactions, they can also be integrated with in-person transaction systems, depending on the provider and their offerings. In such cases, payment gateways can facilitate electronic transactions in physical retail environments.
How payments are processed behind the scenes
Payment gateway: The payment gateway serves as an intermediary between the customer, the business, and their respective financial institutions during an online transaction. It encrypts sensitive data, facilitates transaction authorization, and streamlines funds settlement.
Payment terminal: A payment terminal mostly does the same job as a payment gateway, but it supports in-person rather than online transactions. It reads the customer’s payment card or contactless payment device, communicates with the relevant financial institutions for transaction authorization, and prints receipts. It connects to the business’s acquiring bank or payment processor through a phone line, internet connection, or mobile network.
How payment gateways and terminals protect transaction data
Payment gateway: To ensure the security of online transactions, payment gateways employ encryption protocols such as Secure Sockets Layer (SSL) or Transport Layer Security (TLS), fraud detection algorithms, AVS, and CVV checks.
Payment terminal: Like payment gateways, terminals use security measures such as encryption of card data and compliance with Payment Card Industry Data Security Standard (PCI DSS) requirements, while also supporting security measures for card-present transactions, such as EMV chip technology.
How each option is set up and integrated with your business
Payment gateway: Set up varies depending on whether a business chooses a hosted gateway or an integrated gateway. A hosted gateway redirects customers to a page managed by the payments provider and requires less technical setup. An integrated gateway is fully embedded in the business’s site and provides more control over user experience. Integrating a payment gateway into an ecommerce platform, website, or mobile app typically requires technical knowledge and the use of APIs or prebuilt plugins.
Payment terminal: Setting up a payment terminal is usually a more straightforward process, involving physical installation of the device and connection to the business’s POS system, internet, or phone line.
What’s the difference between a payment gateway and a payment processor?
A payment gateway is a tool that securely transmits and facilitates the authorization of online transactions, while a payment processor is a business that partners with merchants to handle the processing, including the authorization and settlement of funds between the involved parties.
Although they serve different functions, payment gateways and payment processors are two key components of electronic financial transactions, particularly in ecommerce. Here’s an explanation of their differences:
|
Payment gateway |
Payment processor |
|
|---|---|---|
|
Primary role |
Acts as an intermediary that securely transmits payment data and facilitates transaction authorization |
Handles the actual processing of transactions, including authorization and settlement of funds |
|
What it does |
Encrypts payment information, sends transaction data to the processor or acquiring bank, and returns approval or decline messages |
Verifies transaction details, checks account validity and funds, approves or declines transactions, and moves money between banks |
|
Where it operates |
At the point of online checkout (websites and apps) |
Behind the scenes within the payment network and banking infrastructure |
|
Security focus |
Protects payment data at entry using encryption (SSL/TLS), fraud detection, AVS, and CVV checks |
Ensures secure processing and storage of card data and compliance with PCI DSS requirements |
|
Integration method |
Integrated into ecommerce platforms or apps via APIs or prebuilt plugins |
Integrated through a merchant account and backend payment infrastructure |
|
Relationship with the business |
Typically a software service used by the business |
Often has a direct contractual relationship with the business and provides a merchant account |
|
Handles fund settlement |
No |
Yes |
|
Typical examples |
Online checkout gateways embedded in ecommerce sites |
Merchant services providers that process card payments and bank transfers |
支付网关如何工作?
以下是线上交易期间支付网关如何运作的分步说明:
1. 交易发起
客户在商家的网站或应用上选择他们想要购买的产品或服务,然后进入结账页面。他们输入其支付信息,例如信用卡详细信息或数字钱包凭据。
2. 支付数据加密
一旦客户提交了他们的支付信息,支付网关就会使用 SSL 或 TLS 协议对数据进行加密。这种加密可确保敏感信息在传输过程中免受未经授权的访问或盗窃。
3. 数据传输到企业服务器
然后,加密的支付信息被发送到企业的服务器,该服务器安全地存储数据并将其转发到支付网关进行进一步处理。
4. 转发交易明细
支付网关从企业的服务器接收加密的交易数据,并将其转发给企业的支付处理商和收单银行,后者是负责代表企业处理付款的金融机构。
5. 交易验证
收单银行将交易数据路由到客户的发卡行或相应的支付处理商进行授权。发卡行或支付处理商会验证交易明细,包括客户的账户余额和支付方式的有效性。
6. 交易批准或拒绝
根据验证结果,发卡行或支付处理商批准或拒绝交易。此响应通过收单银行和支付网关发送回企业的服务器。
7. 传达交易状态
支付网关将交易状态(已批准或已拒绝)发送到企业的网站或应用,然后向客户显示相应的消息。如果交易获得批准,企业将继续履行订单。如果被拒绝,客户会收到通知,并可能被提示尝试其他支付方式。
支付网关对数据加密、获得交易授权、结算资金和向企业提供报告工具,协助完成和保护线上交易过程。
Payment gateway fees
Using a payment gateway comes with fees. Here are a few particularly common payment gateway fees to keep in mind:
Transaction fees
Transaction fees are charged each time the payment gateway processes a credit card transaction. This fee can be a set percentage of the sale amount, a fixed amount per transaction, or both.Setup fees
This is typically a one-time fee charged when a business first sets up an account with the payment gateway. It’s intended to cover the cost of configuring and integrating the payment gateway with the business’s system.Monthly fees
Some payment gateways charge a monthly fee, also called a service fee, for using their services, regardless of how many transactions the business processes per month.
How Stripe Payments can help
Stripe Payments provides a unified, global payments solution that helps any business—from scaling startups to global enterprises—accept payments online, in person, and around the world.
Stripe Payments can help you:
- Optimize your checkout experience: Create a frictionless customer experience and save thousands of engineering hours with prebuilt payment UIs, access to 125+ payment methods, and Link, a wallet built by Stripe.
- Expand to new markets faster: Reach customers worldwide and reduce the complexity and cost of multicurrency management with cross-border payment options, available in 195 countries across 135+ currencies.
- Unify payments in person and online: Build a unified commerce experience across online and in-person channels to personalize interactions, reward loyalty, and grow revenue.
- Improve payments performance: Increase revenue with a range of customizable, easy-to-configure payment tools, including no-code fraud protection and advanced capabilities to improve authorization rates.
- Move faster with a flexible, reliable platform for growth: Build on a platform designed to scale with you, with 99.999% historical uptime and industry-leading reliability.
Learn more about how Stripe Payments can power your online and in-person payments, or get started today.
本文中的内容仅供一般信息和教育目的,不应被解释为法律或税务建议。Stripe 不保证或担保文章中信息的准确性、完整性、充分性或时效性。您应该寻求在您的司法管辖区获得执业许可的合格律师或会计师的建议,以就您的特定情况提供建议。