GR-6.3.12

Past version: Effective from 01 Apr 2019 to 30 Jun 2021
To view other versions open the versions tab on the right

Islamic retail bank licensees, AISPs, and PISPs, must have in place a strong customer authentication process and ensure the following:

(a) no information on any of the elements of the strong customer authentication can be derived from the disclosure of the authentication code;
(b) it is not possible to generate a new authentication code based on the knowledge of any other code previously generated; and
(c) the authentication code cannot be forged.
Added: April 2019