Page History
...
The decision to authenticate the user in one step (without an additional password) is made at the payment system level based on a risk analysis. For an adequate risk assessment by the payment system, the merchant may additionally transmit parameters describing the user making the purchase (for example, is he a regular customer and has he been registered in the merchant system for a long time), type of product or service, risk assessment of the purchase by the merchant (if it has its own security monitoring system), etc.
...