Security Issues and Risk mitigation measures related to Card Not present transactions - आरबीआय - Reserve Bank of India
Security Issues and Risk mitigation measures related to Card Not present transactions
RBI/2010-11/347 December 31, 2010 To Security Issues and Risk mitigation measures related to Card Not present transactions 2. The progress in implementing the directions has been under continuous monitoring since several stake holders are involved in implementing the service solutions. While considerable progress has been achieved in the matter, banks have been requesting to permit them to test the new system in a live scenario by providing a parallel run for a reasonable period, so as to ensure that customers are not put to inconvenience. 3. After further discussions with the stakeholders it has been decided to permit a parallel run of the new arrangement for a period of one month upto January 31, 2011. During this period IVR transactions will not be declined merely on account of non authentication of additional factor. However, all efforts will be taken by the banks to ensure that customers use the additional factor as well while transacting through the IVR mode. However, after January 31, 2011 no IVR transactions shall be permitted unless such transactions comply with the additional factor authentication requirement. 4. We have been receiving requests from the various stakeholders that the Mail order Telephone order (MOTO) transactions which are also a subset of the Card Not present transaction may be exempted from the purview of additional factor of authentication for the present.After extensive deliberations with the stakeholders, it has been decided that the banks and card companies shall revert to us by February 28, 2011 on the process to be followed in respect of:-:
5. Please acknowledge receipt. |