Visa launched the Visa Payment Passkey (VPP) on Thursday, allowing credit card holders in India to make payments without one-time password (OTP) authentication [1].

This shift addresses a primary point of friction in digital commerce. By removing the need for users to manually enter codes sent via SMS or email, the system aims to streamline the checkout process and reduce transaction abandonment rates.

The rollout is being implemented through partner firms, including IDFC First Bank [1, 2]. This partnership enables a new layer of security that replaces the traditional OTP with a passkey-based authentication method [2].

"Visa rolls out the Visa Payment Passkey (VPP), an OTP-less authenticated payment facility for credit card holders of partner firms here on Thursday," a Visa spokesperson said [1].

The technology allows users to verify their identity through a passkey, which typically leverages biometric data or device-specific security locks. This removes the dependency on cellular networks for receiving authentication codes [2].

IDFC First Bank confirmed the integration of the new technology. "Visa Payment Passkey has gone live in India," the bank said [2].

The move comes as digital payment infrastructure in India continues to evolve toward more seamless, invisible authentication. By utilizing a single authenticated payment facility [1], the company seeks to balance security with user convenience.

"Visa Payment Passkey has gone live in India"

The transition from OTPs to passkeys represents a broader industry move toward FIDO-based authentication standards. By reducing reliance on SMS-based codes, which are vulnerable to SIM-swapping and network delays, Visa is improving both the security posture and the user experience for digital transactions in one of the world's fastest-growing fintech markets.