Read Daily Current Affairs on Our App
Home   »   RBI’s new directions require two‑factor authentication

RBI Mandates 2 Factor Authentication for Digital Payments from April 2026

RBI’s new directions require two‑factor authentication for all digital payments from April 1, 2026, allowing biometrics, tokens, passphrases, and risk‑based checks.

Posted byShivam Last updated on September 30th, 2025 12:00 pm
RBI Mandates 2 Factor Authentication for Digital Payments from April 2026

The Reserve Bank of India (RBI) has introduced a new regulatory framework to strengthen digital payment security in the country. From April 1, 2026, two-factor authentication (2FA) will be mandatory for all digital transactions, with exceptions allowed only for certain small-value cases. The guidelines mark a major shift towards advanced, flexible, and secure verification methods, replacing the outdated reliance on SMS OTPs alone.

Key Highlights of the New Norms

Mandatory Two-Factor Authentication

  • All digital payments — including UPI, net banking, mobile wallets, and card-based transactions — will now require 2FA, ensuring two independent layers of verification. Small, low-risk transactions may be exempt based on pre-defined thresholds.

Flexible Authentication Methods

Banks and payment service providers will now have multiple options to verify users, including,

  • Biometric authentication (fingerprint, facial recognition)
  • Device-based tokens or app-linked authenticators
  • Passphrases, PINs, or security questions
  • Hardware/software-based OTP generators
  • Native device security features like facial unlock or fingerprint

These alternatives aim to reduce dependency on SMS OTPs, which are vulnerable to delays, phishing, and SIM-swapping.

Risk-Based Authentication

  • Institutions may use risk-based assessment to trigger extra layers of verification for high-value, cross-border, or suspicious transactions.
  • This allows adaptive security, improving user experience for low-risk cases while protecting against fraud.

Implementation Timeline

  • Effective date for domestic transactions: April 1, 2026
  • Cross-border and card-not-present transactions may receive extended deadlines
  • A phased rollout will be coordinated with banks and fintech players for smooth adoption

Key Facts

  • 2FA becomes mandatory: April 1, 2026
  • Applies to: UPI, net banking, cards, mobile wallets, etc.
  • Exemptions: Low-value transactions (as defined by RBI)
  • Permitted methods: Biometrics, tokens, passphrases, OTPs, app authenticators
  • Risk-based checks: Allowed for extra protection on flagged transactions
  • SMS OTP: Still allowed as one of the factors
prime_image

TOPICS:

Latest Current Affairs PDF

RBI Mandates 2 Factor Authentication for Digital Payments from April 2026_4.1

Monthly Current Affairs

December 2025
M T W T F S S
1234567
891011121314
15161718192021
22232425262728
293031  

Recent Posts

IMPORTANT EXAMS

Our Other Websites

Welcome to the Current Affairs Section of Adda247. If you are preparing for Government Job Exams, then it is very important for you to read the Daily Current Affairs. All the important updates based on current affairs are included in this Daily Current Affairs 2025 article.

Download Adda247 App

google store

Follow us on

  • youtube
  • facebook
  • twitter
  • telegram
  • linkedin
  • whatsapp

Discover Our Other Platforms

careersadda career247 Prepinsta careerpower studyiq Adda247
© 2025 Adda247. All rights reserved.
600+ Exams' PYQ + Mock Tests with "TEST PRIME"
Attempt Now Free