RBI proposes to adopt a principle-based "Framework for authentication of digital payment transactions"; RBI proposes to streamline the onboarding process, including mandatory due diligence, for AePS touchpoint operators, to be followed by banks
FinTech BizNews Service
Mumbai, February 8, 2024: Aadhaar Enabled Payment System (AePS), operated by NPCI, enables customers to perform digital payment transactions in assisted mode.
Payment Systems and Fintech:
Enhancing the Robustness of AePS
In 2023, more than 37 crore users undertook AePS transactions, which points to the important role played by AePS in financial inclusion. To enhance the security of AePS transactions, it is proposed to streamline the onboarding process, including mandatory due diligence, for AePS touchpoint operators, to be followed by banks. Additional fraud risk management requirements will also be considered. Instructions in this regard shall be issued shortly, as per a statement of Shaktikanta Das, Governor, Reserve Bank of India, issued on February 8, 2024.
Principle-based Framework for Authentication of Digital Payment Transactions
Over the years, the Reserve Bank has prioritised security of digital payments, in particular the requirement of Additional Factor of Authentication (AFA). Though RBI has not prescribed any particular AFA, the payments ecosystem has largely adopted SMS-based One Time Password (OTP). With innovations in technology, alternative authentication mechanisms have emerged in recent years. To facilitate the use of such mechanisms for digital security, it is proposed to adopt a principle-based “Framework for authentication of digital payment transactions”. Instructions in this regard will be issued separately, according to the statement of Shaktikanta Das.