DITO Telecommunity has launched DITO Verified, an authentication service that enables banks and digital platforms to verify users without sending one-time passwords (OTPs), as financial institutions prepare for stricter cybersecurity rules.
The service uses silent network authentication (SNA), which verifies users directly through their mobile network and SIM card. Instead of receiving a code, users connected to DITO mobile data are authenticated in the background within seconds.
Developed with cybersecurity firm Shush Inc., DITO Verified can be integrated alongside existing authentication systems used by banks, e-wallets and other digital services. DITO, however, did not identify any financial institutions that have already adopted the platform.
The launch comes as BSP-supervised institutions transition to phishing-resistant authentication methods and in compliance with the Anti-Financial Account Scamming Act (AFASA). The rules require financial institutions to strengthen customer authentication and reduce reliance on SMS- and email-based OTPs for high-risk transactions.
DITO said its system lowers the risk of phishing and social engineering attacks because no code is generated or transmitted during the verification process.
While the company described the launch as the “end of the OTP era,” adoption will depend on whether banks and digital platforms integrate the technology into their apps.
