## Telecom Operators Seek Extension for New TRAI Guidelines: OTPs at Risk?
The Indian telecom industry is facing a new challenge as the Telecom Regulatory Authority of India (TRAI) prepares to implement stringent new guidelines aimed at enhancing message security. These guidelines, scheduled to come into effect on November 1, mandate that telecom operators ensure the traceability of all messages sent to customers by Principal Entities (PEs), including crucial one-time passwords (OTPs) used for online transactions.
However, a potential storm is brewing as telecom operators express concerns about the feasibility of meeting this deadline. They claim that many telemarketers and PEs lack the necessary technology to comply with the new regulations, raising concerns about potential disruptions to vital services like online payments, delivery of parcels, and other transactions heavily reliant on OTPs.
The crux of the issue lies in the TRAI guidelines’ requirement for all messages to have clear sender identities, with mismatched or ambiguous sender details being blocked. This signifies a significant shift towards enhanced message security but comes with a steep learning curve for many PEs and telemarketers.
The telecom industry has formally requested a two-month extension from TRAI, highlighting the need for additional time to ensure proper scrubbing of messaging traffic and minimize disruptions. While telecom operators claim their systems are ready for the November 1 deadline, they emphasize the need for a transitional period to avoid any unforeseen issues.
The request for an extension comes as the second such plea from the telecom industry in recent months. Earlier, TRAI had extended the deadline for whitelisting messages containing URLs, OTT links, and other related information by one month to October 1. This move was deemed successful, with most PEs and telemarketers successfully adapting to the new system.
Given the potential impact of these new regulations on a wide range of online services, the telecom industry is pressing for a phased implementation. They propose a “logger mode” for the initial period starting November 1, allowing messages to flow without disruption, while simultaneously working to ensure full compliance with the guidelines by December 1.
This development highlights the delicate balance between enhancing message security and ensuring the smooth operation of critical online services. It remains to be seen how TRAI will respond to the telecom industry’s request for a two-month extension and whether a compromise can be reached to ensure both security and service continuity.