#ComplianceDeadline

India contemplates compulsory dynamic 2FA for digital payments

by

August 1, 2024 at 11:37PM India’s central bank proposed new requirements for second authentication factors for digital payments, aiming to move beyond SMS OTP to consider biometrics, pins, passphrases, and hardware or software tokens. It prioritizes dynamic generation and single-use to enhance security, allowing banks to choose the AFA while mandating compliance and exceptions for … Read more

India’s CERT given exemption from Right To Information requests

by

November 28, 2023 at 01:38AM India’s Computer Emergency Response Team (CERT-In) has been granted immunity from Right To Information (RTI) requests. The reasons for the exemption are unknown, but it comes after an embarrassing incident where an RTI request revealed low compliance with CERT-In’s infosec incident reporting requirements. This move has been criticized by the … Read more