RBI mandates tougher authentication for digital transactions under new guidelines issued on Thursday, September 25, 2025. The Reserve Bank of India released the Authentication Mechanisms for Digital Payment Transactions Directions, 2025, which will take effect from April 1, 2026.
The central bank said the move aims to further secure digital payments by adding risk-based authentication measures. At present, most online payments rely on two-factor authentication, but rising cyber threats have pushed RBI to tighten the process.
According to the new framework, banks, fintech firms, and payment service providers must deploy additional checks based on transaction value, user behavior, location, and device fingerprinting. These steps will help detect fraud attempts in real time and safeguard users from unauthorized transactions.
RBI mandates tougher authentication for digital transactions by leveraging advanced technologies such as AI-driven anomaly detection and biometric verification. This is expected to enhance trust in India’s fast-growing digital payments ecosystem, which processes billions of transactions each month.
Industry experts believe the stricter rules will improve security but may also require banks and payment apps to invest in new infrastructure. RBI has given the ecosystem time until April 2026 to adapt to the changes.
RBI mandates tougher authentication for digital transactions as part of its ongoing effort to balance convenience with safety in India’s financial system.
