A number of Philippines-based banks have upgraded their multi-factor authentication (MFA) system by upgrading to EMV technology in their ATM cards, a ranking central bank official said.
Bangko Sentral ng Pilipinas (BSP) deputy governor Nestor Espenilla Jr. said that while on-site assessments are still on-going to check the MFA system of the local banks, “quite a number? of them have voluntarily made the shift to EMV technology.
MFA is required for transactions that are considered sensitive communications like enrollment in transactional electronic services or e-services, payments and fund transfers to third parties.
The Monetary Board (MB), the BSP?s policy-making body, has amended regulations on MFAs and now requires banks to adopt the system for certain transactions starting September 30, 2017.
Espenilla told PNA that ?by issuing a circular, we are now making that good practice a mandatory minimum standard.? ?This is a preemptive response to potential increase in card-not-present (CNP) fraud as cybercriminals try to look for other opportunities since card fraud has become harder due to EMV chip migration,? he said.
CNP fraud involves transactions done online such as airline ticket purchases, hotel bookings, and utility bill payments.
EMV is a system developed by Europay, MasterCard and Visa. It uses a chip that is made part of the automated teller machine (ATM) card wherein which information about the ATM card holder is stored. It has a more intricate technology and security features compared to the magnetic strip used currently in most ATM cards.
The BSP has mandated the full implementation of EMV-enabled ATMs by January 2017 but this has not been fully complied with.
Espenilla said the BSP is considering to set another deadline for this, citing that inability of banks to fully migrate to EMV technology is understandable given the volume of ATMs that have been issued to date. — PNA