Go to bindings and click the plus button then go to eCart->local checkout response and choose the part of the process that is sending you to the failure page. Then you can drag and drop more information about why the error occurs.
Security header is not valid
Does that mean that the API is incorrect for the cart?
DOes Paypal change the API for direct payments every time the client changes her password?