In line with the Bangko Sentral ng Pilipinas’ (BSP) updated regulations on IT risk management under the Anti-Financial Account Scamming Act (AFASA), financial institutions and relative enterprises are required to implement stronger authentication methods by June 25, 2026. This directive compels regulated organizations to strengthen fraud management and identity verification by moving beyond traditional logins and adopting more secure, phishing-resistant solutions that include passwordless authentication through FIDO.
This comes as no surprise, as 16 billion passwords were exposed in a record-breaking data breach in the spring of 2025, according to Forbes. In addition, IT security fraud and online scams in the Philippines have surged by 35% over the last two years. To help address these challenges, HID is introducing a new line of FIDO-certified credentials—now powered by the new Enterprise Passkey Management (EPM) solution— designed to help organizations deploy and manage passkeys at the enterprise scale. With this new portfolio, organizations have choice, flexibility, and speed to deploy FIDO without compromising user experience or security posture.
“Passwordless authentication is no longer optional—it is now a regulatory requirement in the Philippines,” said Sean Dyon, Vice President & Head of the Authentication Business Unit at HID. “Our next-generation FIDO portfolio gives Philippine enterprises the hardware diversity and centralized management capabilities needed to deploy and manage passkeys at scale, while reducing reliance on phishable credentials like passwords and OTPs to enhance organizations’ overall cybersecurity posture.”
Simplifying enterprise-scale passwordless deployment
HID’s Enterprise Passkey Management is a subscription-based solution that empowers organizations in the Philippines to drive passwordless adoption at scale—securely, efficiently, and with full administrative oversight. With HID’s Enterprise Passkey Management, they can:
- Remotely initiate and manage provisioning — Issue FIDO credentials on behalf of users to reduce manual effort, end user training requirements and accelerate deployment.
- Gain full lifecycle visibility — Manage issuance, revocation, and audit trails at scale to support compliance with BSP passwordless guidelines and operational efficiency.
Expanded hardware portfolio for diverse needs
Recognizing that passwordless authentication is not a one-size-fits-all approach, HID’s updated portfolio includes:
- Crescendo Keys – Redesigned in response to market feedback for improved ergonomics, usability and accessibility. Supports FIDO2, PKI, and OATH with PIN reset, perfect for power users and regulated environments.
- Crescendo Cards – A single, universal credential—a corporate badge that offers both physical access to facilities and passwordless access to digital enterprise resources. Available as dual interface or contactless cards, with support for FIDO, PKI, OATH, and other key physical access technologies.
- OMNIKEY 5022 Contactless Reader – A high-quality, cost-effective FIDO reader for authentication to PCs and workstations.
All devices are compatible with Microsoft Entra ID and other major identity providers, ensuring seamless integration with existing enterprise infrastructure.
Unified credential and physical access support
The portfolio includes Seos® FIDO-enabled and MIFARE DESFire EV3 FIDO-enabled cards, which combine physical access control with phishing-resistant digital authentication in a single, secure credential—boosting workforce productivity while reducing administrative complexity.
For more information on how Philippine organizations can securely embrace the passwordless journey, download HID’s new playbook here.
