印度要求在2026年4月之前对数字付款进行双要素认证,以加强安全和信任。 India mandates two-factor authentication for digital payments by April 2026, boosting security and trust.

印度储备银行发布了最终准则,自2026年4月1日起生效,要求所有国内数字付款至少使用两个认证因素,每笔交易有一个动态生成的,以加强安全。 The Reserve Bank of India (RBI) has released final guidelines effective April 1, 2026, requiring all domestic digital payments to use at least two authentication factors, with one dynamically generated per transaction to enhance security. 虽然基于短信的OTP仍然允许,但规则鼓励采用生物识别和代币化等先进方法. While SMS-based OTPs remain permitted, the rules encourage adoption of advanced methods like biometrics and tokenization. 付款提供者可以利用行为、地点和装置数据进行基于风险的额外检查。 Payment providers may apply risk-based additional checks using behavioral, location, and device data. 开卡人必须在2026年10月1日之前验证非经常性的无证跨界卡交易,包括用卡网登记银行身份证号码。 Card issuers must validate non-recurring cross-border card-not-present transactions by October 1, 2026, including registering Bank Identification Numbers with card networks. 该框架促进互操作性、全系统的可访问性以及遵守印度2023年《数字个人数据保护法》。 The framework promotes interoperability, system-wide accessibility, and compliance with India’s Digital Personal Data Protection Act, 2023. 发行人将对不遵守规定造成的损失负全部赔偿责任,目的是加强印度数字支付生态系统的信任和复原力。 Issuers will be fully liable for losses due to non-compliance, aiming to strengthen trust and resilience in India’s digital payment ecosystem.