SAVYINT Officially Joins the Cloud Signature Consortium (CSC): Advancing the Global Digital Trust Ecosystem
March 2026, SAVYINT has officially become a member of the Cloud Signature Consortium (CSC) – the world’s leading international standardization body in the field of cloud-based digital signatures and digital trust services. As the global digital economy undergoes profound shifts in both regulatory frameworks and technical standards, establishing common benchmarks for cross-border electronic transactions has become an urgent priority. SAVYINT – a pioneer in security and trust services – has officially joined the Cloud Signature Consortium (CSC). This milestone reaffirms SAVYINT’s position and commitment to aligning its digital signature and authentication solutions with the highest international standards. Trust with Cross Border As a CSC member, SAVYINT’s Chairman of the Board, Mr. Steve Huang, made a notable introduction at the CSC online networking session themed “Trust with Cross Border — The EU–Mercosur Free Trade Agreement and Its Impact on the Digital Trust Ecosystem”. During the session, leading experts shared insights on the opportunities and challenges in advancing global interoperability for cross-border digital signatures. For SAVYINT, participating in these international dialogues is not only an opportunity to stay current with the most advanced technical specifications, but also a chance to connect with strategic partners across Europe and Latin America — laying the groundwork for SAVYINT’s international market expansion strategy. SAVYINT – Leading Digital Trust Solutions in the Region SAVYINT Group is a premier IT security company headquartered in Australia, with a Research & Development (R&D) center based in Vietnam. With a strategic focus on building market-adaptive digital trust infrastructure, SAVYINT has developed a comprehensive suite of solutions including: Qualified Remote Signing, VA & Timestamp, PKI in a Box, SAM Appliance, ePaperless, eStamping, and eArchive. All platforms are entirely researched and developed in-house, ensuring high flexibility and customizability to meet the distinct legal frameworks and trust requirements across regional markets including SEA, APAC, and MENA, as well as international standards such as PSD2/PSD3, eIDAS, GDPR, and beyond. Looking further ahead, SAVYINT is also committed to realizing a roadmap toward post-quantum-ready trust services, encompassing PQC-enabled cryptographic infrastructure and PKI. As a member of CSC, SAVYINT commits to long-term contributions to the digital trust community, synchronizing with international standards, sharing real-world implementation experience, and offering practical perspectives from Vietnam and other emerging markets to help make CSC’s standards more comprehensive and reflective of the world’s diverse realities. Digital trust knows no borders, and joining CSC is the foundation upon which SAVYINT will realize that vision on a global scale.
PIONEERING THE NEXT GENERATION OF SECURITY: QUANTUM AND AI HORIZON
On March 26, Savyint welcomed a student delegation from the University of San Agustin, Philippines. During the visit, the students got a first-hand look at leading technology trends such as Post-Quantum Cryptography (PQC), the Digital Trust platform, AI in fraud prevention, and especially Agentic AI – fields that are shaping the future of global digital security and transformation. 1. Post-Quantum Cryptography (PQC) – Ready for the New Era As quantum computing gets closer to a breakthrough, traditional encryption methods are at risk of being broken. PQC (Quantum-Resistant Cryptography) has emerged as a vital solution, designed to protect data infrastructure against the massive computing power of this new era. Savyint is a pioneer in integrating advanced PQC standards (like ML-KEM and ML-DSA) into its core systems to secure devices. Furthermore, Savyint has established the Quantum AI Lab – a leading lab in Vietnam for researching and testing these quantum-resistant algorithms. Here, they simulate real-world attacks from “AI hackers” to test how strong their security layers really are. 2. AI Fraud & Digital Trust – Protecting Finance in the AI Age Beyond the pressure from quantum computers, threats like Deepfakes and automated malware are making financial security more urgent than ever. Savyint shared an overview of the 2025 threat landscape, where fraud not only causes financial loss but also creates legal risks for organizations. To fight this, Savyint introduced its Digital Trust platform. This platform uses AI to analyze user behavior, detect unusual activity, and make decisions in real-time. The system is built on four pillars: device security, advanced authentication, AI-based fraud detection, and risk management. 3. Agentic AI – Toward Self-Operating Security Systems Savyint also introduced Agentic AI – AI systems capable of making decisions and taking action on their own, rather than just creating content or analyzing data. In fraud prevention, Agentic AI is used to simulate complex attack scenarios to “train” defense systems, helping them react and adapt faster over time. Additionally, these AI agents can: This approach marks a shift from “reactive” systems to “autonomous” (self-operating) systems, where AI acts as an active partner in the security ecosystem. The visit gave the University of San Agustin students a practical look at how cutting-edge tech is used in real businesses. It was more than just a learning experience; it was inspiration for the younger generation to join the journey of global innovation. See more photos from the event below:
Dreamland Soirée: A Dreamy Wonderland for the Muses of Savyint
March gently knocks on the door, bringing with it the colors of spring and warm wishes dedicated to the wonderful half of the world. In the space of “Dreamland Soirée,” the company lobby was transformed into a softer, more sparkling setting where the muses of Savyint could truly shine. This year, beyond flowers and gifts, the women of Savyint also had a special moment to pause and enjoy time just for themselves. The Beauty Corner – Where the Muses Shine Dreamland Soirée featured a charming “beauty corner” right at the office, where the ladies could enjoy getting their nails and lashes done in a gentle and relaxing atmosphere. How long has it been since we last sat down, unhurried, choosing our favorite nail color? How long has it been since we tried a little change to see ourselves shine a little brighter? With soft music in the background and cheerful conversations all around, every hand was carefully pampered, and every gaze became more radiant with delicately curled lashes. Nothing too extravagant – just a little moment of self-care was enough to bring more confidence to every smile and a sparkle to every pair of eyes. During the morning, the ladies also received lovely pink cups of milk tea, thoughtfully prepared by the gentlemen of the company. With flowers, gifts, and heartfelt wishes, everything came together just perfectly to make every woman feel appreciated and cherished. A Cozy Celebration and Warm Wishes for March Later in the afternoon, members of the S-family gathered together for a cozy celebration to mark International Women’s Day (March 8), while also sending birthday wishes to colleagues born in March. To warm up the atmosphere, everyone joined the game “Guess the Word from the Image.” Quick thinking and surprising answers filled the room with laughter and joyful moments. In the blink of an eye, Ms. Trang Nhung and Ms. Hieu Ly dominated the game with 5 out of 10 correct answers, receiving lovely small gifts from the organizing team. Following the lively minigame, everyone gathered together to celebrate the March birthdays. Wishing our colleagues a new year filled with health, happiness, and continued passion in their work. The day of March 8th ended with countless smiles and laughter. Thank you to all the wonderful women for always being gentle and graceful, yet strong and resilient. May the beautiful half of our team continue to shine in your own unique ways and keep glowing on the journey ahead. Let’s take a look back at the memorable moments from Dreamland Soirée – A Dreamy Wonderland for the Muses of Savyint.
Biometrics, Smart OTP, Smart Token, Passkey/FIDO2: Passwordless Authentication for Stronger Financial Fraud Prevention
As digital banking and mobile banking make payments and account management more convenient, financial fraud is also increasing at a rapid pace. Technologies such as biometrics, Smart OTP, Smart Token, and Passkey/FIDO2 are emerging as next-generation authentication methods. These passwordless authentication technologies help banks and financial institutions strengthen transaction security while significantly improving fraud prevention. Traditional authentication methods are no longer secure enough For many years, banking transactions have mainly relied on traditional authentication methods such as passwords, SMS OTP, and security questions. However, these methods are increasingly showing critical security weaknesses: In response, financial regulators around the world are tightening requirements for strong authentication and encouraging banks and financial institutions to adopt more secure authentication technologies. Some notable regulations include: These regulations clearly reflect a global trend: passwordless authentication methods such as biometrics, Smart OTP, and Smart Token are becoming the new standard for financial security. Why are biometrics, Smart OTP, and Smart Token more secure than traditional authentication? Smart OTP Smart OTP has become a widely adopted authentication method in digital banking. Unlike SMS OTP, Smart OTP is generated directly inside the banking application, tied to the user’s device and protected by cryptographic keys. Key advantages of Smart OTP: As a result, Smart OTP provides a critical additional security layer to protect digital banking transactions. Smart Token Alongside Smart OTP, Smart Token is another strong authentication method widely used by banks for high-value transactions. Smart Tokens can exist in different forms: Unlike standard OTP mechanisms, Smart Tokens use cryptographic algorithms to generate dynamic authentication codes tied to specific transactions. This provides several security benefits: Because of their strong security capabilities, Smart Tokens are often deployed as an additional authentication layer in electronic banking systems. Biometrics Biometric authentication verifies a user based on biological or behavioral characteristics. Common biometric technologies used in digital banking include: Unlike passwords or OTP codes, biometric traits are unique to each individual and extremely difficult to replicate or forge, ensuring that the person performing the transaction is truly the legitimate account holder. Another major advantage of biometrics is user convenience. Customers no longer need to remember passwords or wait for OTP codes. A simple fingerprint scan or facial recognition can authenticate a transaction instantly. A growing trend in fraud prevention is behavioral biometrics. Instead of relying on physical traits, this technology analyzes how users interact with their devices, such as: Typing speed, Screen swipe patterns, App usage behavior,…Users do not need to perform any additional authentication step, yet the system can still detect suspicious behavior in real time. Passkey / FIDO2 Another rapidly growing passwordless authentication trend is Passkey/FIDO2. A passkey is a FIDO-based credential that allows users to sign in to apps and websites using the same method they use to unlock their devices – biometrics, PIN, or device pattern – without entering a username, password, or additional authentication factors. Passkey/FIDO2 offers extremely strong protection against phishing and credential theft because: A passkey works only with the specific domain or website where it was registered. If users visit a phishing or fake website, the passkey simply will not work. Passkeys are device-bound credentials, meaning authentication requires the registered device and user verification (biometrics or PIN). In the digital banking era, security is no longer just a technical defense layer – it has become a core foundation for building digital trust between financial institutions and their customers. The combination of biometrics, Smart OTP, device-based authentication, and modern technologies such as Passkey/FIDO2 is paving the way for more secure authentication models, stronger fraud prevention, and seamless user experiences. If your bank or financial institution is looking for modern passwordless authentication solutions, from biometrics, Smart OTP, Smart Token, and Passkey/FIDO2 to AI-powered behavioral analytics and fraud detection. Connect with Savyint’s experts today to explore how we can support your digital security transformation. Read more:
SAVYINT Supports BAC A BANK in Upgrading Passwordless Authentication in Compliance with Circular 50/2024/TT-NHNN and Circular 77/2025/TT-NHNN (Vietnam)
SAVYINT successfully implemented passwordless authentications for BAC A BANK, including SmartOTP, Smart Token. The project enables the bank to fully comply with Circular 50/2024/TT-NHNN and Circular 77/2025/TT-NHNN issued by the State Bank of Vietnam while strengthening transaction security and reinforcing customer trust. Overview – Industry: Banking & Financial Services – Project: Deployment of passwordless authentication including SmartOTP, Smart Token for retail and corporate customers– Timeline: 2025 1. BAC A BANK and the Challenge of Complying with Circular 50/2024/TT-NHNN and Circular 77/2025/TT-NHNN Established in 1994, BAC A BANK currently operates 138 transaction offices across major cities and provinces in Vietnam. In 2024, the bank ranked among the Top 5 banks with the largest foreign exchange transaction volume in Vietnam. In 2024, the State Bank of Vietnam issued Circular 50/2024/TT-NHNN on security and safety requirements for providing online banking services, which officially came into effect on January 1, 2025. The regulation introduces several key requirements, particularly: In 2025, the State Bank of Vietnam continued to enhance the regulatory framework by issuing Circular 77/2025/TT-NHNN, which will take effect on March 1, 2026. This circular amends and supplements several provisions of Circular 50 to further strengthen security and risk management requirements for online banking services. As a result, BAC A BANK needed to upgrade its authentication infrastructure to comply with the new regulations while ensuring secure and reliable electronic transaction authentication for both retail and corporate banking customers. 2. SAVYINT’s Solution As a global technology company specializing in Secure Payment, Digital Trust, and Open Banking, SAVYINT delivered a comprehensive electronic transaction authentication solution such as SmartOTP and Smart Token. The solution is designed in alignment with the regulatory requirements of Circular 50 and can be seamlessly integrated into the bank’s Internet Banking and Mobile Banking ecosystem, supporting both retail and corporate customers. 2.1. System Architecture The advanced authentication system implemented by SAVYINT includes two main components: 2.2. User Groups 2.3. Models The system supports two primary authentication flows: 2.4. Key Use Cases a. SmartOTP and Smart Token Service Activation & Management b. Transaction Authentication using SmartOTP, Smart Token The solution also supports Web-to-App authentication and App-based authentication, ensuring flexibility in service usage. c. Multi-Level Transaction Approval d. PIN Management and Security Protection e. Support Features and User Convenience 3. Results Following the successful deployment of SAVYINT’s passwordless authentication solution, BAC A BANK fully met the requirements of Circular 50/2024/TT-NHNN and Circular 77/2025/TT-NHNN issued by the State Bank of Vietnam. The solution is consistently applied across both retail and corporate banking services. By implementing advanced and passwordless authentication methods such as SmartOTP, Smart Token, BAC A BANK achieved several key benefits: This strategic upgrade enables BAC A BANK to strengthen digital trust and enhance its competitiveness in the evolving digital finance landscape.
ACCELERATE AFASA & BSP CIRCULAR NO. 1213 COMPLIANCE WITH SAVYINT
AFASA and BSP Circular No. 1213 are fundamentally reshaping the security architecture of the Philippine financial sector. With the compliance deadline fast approaching, banks and financial institutions must act decisively to meet mandatory regulatory requirements. In June 2025, Bangko Sentral ng Pilipinas (BSP) issued Circular No. 1213, amending the IT Risk Management framework to formally implement Section 6 of the Anti-Financial Account Scamming Act (AFASA). This marks a structural transformation in how financial institutions across the Philippines approach cybersecurity and fraud prevention. Circular 1213 applies to all BSP-supervised entities, including banks, fintech companies, payment service providers, and lending institutions. The regulation focuses on: Notably, before June 2026, , financial institutions are required to eliminate SMS OTP for high-risk transactions and transition to more secure, phishing-resistant, device-bound authentication methods. Understanding the regulatory and operational challenges faced by banks and financial institutions, Savyint delivers an integrated security and fraud prevention platform aligned with AFASA and BSP Circulars 1213 – 1215. The solution is built around four core pillars: Cyber Security & App Protection, SCA/MFA Identity, AI-Driven Fraud Management (FMS), and Risk Management & Compliance, protecting the entire customer journey – from onboarding and login to authentication, transaction execution, and post-transaction monitoring. Savyint’s Key Advantages: Savyint’s integrated platform complies with both international and local security standards and regulations, including: Philippines (AFASA, BSP 1213–1215), Vietnam (Circulars 50, 64, 77/NHNN), Singapore (MAS), as well as FIDO2, PSD2/PSD3, eIDAS, GDPR, and PCI DSS. Connect with our experts today to accelerate your compliance with AFASA and BSP Circulars 1213–1215.
SAVYINT Spring Kick-off 2026 – Galloping Toward Success, Conquering The Global Market
On the first working day of the year, Savyint kicked off 2026 with an energetic Spring Opening ceremony, filled with excitement, determination, and a strong spirit to conquer the global market. The event began with New Year wishes from Executive Chairman – Steve Hoang, who also shared Savyint’s strategic direction for 2026 with all employees. In his early-year message, he emphasized that 2026 is not only about revenue growth or business expansion. It is a defining year for Savyint to strengthen its position as a leading global technology company. He outlined the company’s strategic vision to further develop its ecosystem of cybersecurity, digital identity, and financial fraud prevention solutions. A key focus will be on priority markets such as the Philippines, where Savyint is actively supporting banks in complying with AFASA and BSP circular requirements. Following his inspiring speech, Savyint’s leadership team raised their glasses to celebrate the New Year, accompanied by warm applause from all team members. This was more than just a celebratory gesture – it reflected unity, shared commitment, and the leadership’s strong determination to guide Savyint toward greater international achievements. The Spring Kick-off ceremony concluded in a warm yet powerful atmosphere. For Savyint, the Year of the Horse 2026 is not simply the start of a new calendar year – it marks the beginning of a strong acceleration phase, where strategies turn into real actions and goals are pursued with focus and determination. Savyint 2026: Galloping toward success – Conquering the world!
From AFASA to BSP Circulars 1213 – 1215: SAVYINT Partners with Philippine Banks to Strengthen Security and Fight Digital Fraud
The rapid growth of digital banking, e-wallets, and online payments in the Philippines has led to a serious consequence – financial fraud is becoming increasingly sophisticated and more organized. Following the enactment of AFASA, the Bangko Sentral ng Pilipinas (BSP) continued to issue BSP Circulars 1213, 1214, and 1215, tightening the responsibilities of financial institutions and imposing stricter requirements for user authentication, fraud management, and data protection. About AFASA and BSP Circulars 1213, 1214, and 1215 Officially taking effect on June 25, 2025, the Anti-Financial Account Scamming Act (Republic Act No. 12010) was enacted by the Philippine government with the following core objectives: One of the most important requirements under AFASA is the mandatory transition of authentication methods before June 2026. OTPs sent via SMS and email will no longer be accepted for high-risk transactions. Instead, more secure methods must be implemented, such as biometric authentication, passwordless authentication, and adaptive multi-factor authentication (MFA) based on risk levels. AFASA marks a major shift in risk management thinking: account security is no longer just a technology choice – it is now a legal obligation. BSP Circular 1213 – Focus on Fraud Management and Strong Authentication Among the three circulars, BSP Circular 1213 is considered the technical backbone that brings AFASA into real operational practice. This circular requires banks and financial institutions to: BSP Circular 1213 clearly states that traditional authentication methods are no longer sufficient. Systems must understand user behavior patterns and detect fraud at the earliest stages – during login or even before a transaction is completed. Read more: Philippines BSP Circular No. 1213 and Compliance Solutions for Financial Institutions BSP Circular 1214 – Enabling Data Sharing for Faster Fraud Response BSP Circular 1214 addresses a major legal bottleneck related to accessing account data during fraud investigations. Its main goal is to create a fast-response mechanism to prevent funds from being completely withdrawn before authorities can intervene. Under this regulation: BSP Circular 1215 – Protecting Funds During Disputes While Circular 1213 focuses on prevention and 1214 focuses on investigation, BSP Circular 1215 addresses what happens after an incident occurs. It allows financial institutions to protect customer funds during the investigation period, preventing money from “disappearing” within minutes. Specifically, this circular: Together, AFASA and BSP Circulars 1213, 1214, and 1215 are reshaping the digital financial security standards in the Philippines. Financial institutions now need not only compliance documentation but also a strong technology foundation capable of detecting, preventing, and responding to fraud in real time. AFASA & BSP 1213, 1214, 1215 – Compliant Security Solutions from SAVYINT Savyint is a leading trusted service provider, ready to deliver authentication and payment security solutions that strictly comply with security standards and regulatory requirements under AFASA, BSP Circulars 1213, 1214, and 1215 issued by the Bangko Sentral ng Pilipinas (BSP), as well as the Philippine Open Banking framework and international regulations. Savyint’s solution ecosystem is built around four key pillars: Risk Management & Compliance, Cybersecurity & Application Protection, SCA/MFA Identity, and the FMS AI Fraud Engine. Together, these components protect the entire customer journey – from registration, login, authentication, and transaction execution to post-transaction monitoring. SAM Auth Server SAM Auth Server is an all-in-one strong authentication solution designed for mobile payments and digital banking. Built on a Zero Trust architecture and integrated with a FIPS 140-3 Level 3 certified Hardware Security Module (HSM), and ready for Post-Quantum Cryptography, SAM Auth Server supports a wide range of modern authentication methods, including: Biometric authentication, Smart OTP, Push Authentication, FIDO2 / Passkeys and Context-based authentication It enables step-up authentication when risk levels increase, ensuring maximum protection for electronic transactions. SAM FIDO2 Identity Server SAM FIDO2 Identity Server is a passwordless identity and authentication platform based on FIDO2/WebAuthn standards. It eliminates password storage by replacing passwords with asymmetric key-based authentication securely stored on the user’s device.As a result, the system effectively protects against common attacks such as phishing, man-in-the-middle attacks, and credential stuffing. SAM FIDO2 Identity Server fully meets Strong Customer Authentication (SCA) requirements under PSD2/PSD3 and complies with international standards for identity and data security. SAVYINT Fraud Prevention & Risk Management SAVYINT Fraud Prevention & Risk Management leverages AI and Machine Learning (ML) to help banks and financial institutions detect, assess, and prevent fraud across the entire user journey – from login behavior, device characteristics, and access context to transaction data. Key capabilities include: RASP+ RASP+ protects mobile applications directly within the runtime environment, detecting and blocking attacks while the application is running. It can detect rooted or jailbroken devices, debugging attempts, code tampering, hooking techniques, memory manipulation and emulator-based attacks. RASP+ integrates directly into mobile applications without affecting performance, ensuring strong protection without compromising user experience. TrustShield TrustShield is a mobile fraud prevention platform powered by device fingerprinting, behavioral analytics, and AI. It can identify devices without relying on cookies or advertising IDs, detect emulators, rooted or jailbroken devices, identify multi-device fraud patterns, analyze in-app user behavior, generate real-time risk scores and trigger adaptive authentication directly on mobile devices. With a multi-layered architecture and seamless integration capabilities, Savyint’s security ecosystem delivers a comprehensive fraud prevention model – protecting devices, behavior, identity, and transactions simultaneously. All solutions comply with AFASA, BSP Circulars 1213, 1214, 1215, and international standards such as FIDO2, PSD2/PSD3, eIDAS, GDPR, and PCI DSS. This allows fast deployment on existing infrastructure while achieving the highest level of security. Connect with Savyint’s experts today to implement and optimize your security solutions – and be fully prepared to meet AFASA and BSP requirements within just 3 months!
SAVYINT YEAR-END PARTY 2025 | RE:IMAGINE – REDEFINING DIGITAL TRUST FOR THE GLOBAL STAGE
Closing 2025 with pride and opening a new chapter of aspiration, Savyint gathered for its year-end party under the theme “RE:IMAGINE.” More than a celebration, this event served as a strategic milestone, declaring a bold vision to conquer the APAC and MENA markets in 2026. A Global Vision with Strong Roots With its office located in Australia, Savyint serves as a beacon of technological excellence, seamlessly connecting world-class R&D with practical, high-scale deployment. With a core team comprising top Australian and Vietnamese talent, Savyint operates a dual R&D structure in Sydney and Vietnam, supported by a robust service center in Vietnam and business centers strategically located across Hanoi, HCMC, Singapore, the Philippines, Dubai, Sydney, and the EU. The “REIMAGINE” theme signifies a major strategic pivot. It is a commitment to breaking familiar boundaries and creating distinctive value on a global scale. As Executive Chairman Steve Huang emphasised during the opening speech, amidst a rapid global digital transformation, Savyint is steadfast in mastering core technologies to meet the most stringent international standards. The 2026 Strategy focuses on Advanced Technology and Zero Trust Moving into 2026, Savyint is restructuring its strategic focus to deepen its expertise in cutting-edge domains. The group is well-positioned to take the lead in the following areas: At the heart of this strategy is the Zero Trust Framework. Savyint positions itself as a pillar of digital trust, ensuring absolute safety in payment transactions and cryptocurrency dealings, while providing a total fraud prevention mechanism. Compliance: The Competitive Edge Savyint distinguishes itself not just by technology but by rigorous adherence to global and local compliance standards. Savyint’s solutions are engineered to comply with a comprehensive matrix of regulations: This dedication ensures that Savyint acts as a secure bridge for enterprises as they navigate the complicated regulatory landscapes of APAC and MENA. Highlighting this success, SAM Enterprise Appliance was honoured as the “Product of the Year”. Already successfully deployed in major financial institutions like Agribank, BIDV, Sacombank, and Bac A Bank, this solution recently won at APICTA 2025 (the “Oscars” of Asia-Pacific ICT), affirming Savyint’s ability to compete on the international stage. Reaching the Open Seas The Year End Party 2025 concluded not just with festivities but with a unified spirit of determination. The Savyint team’s energy – from the R&D engineers to the business units – reflected a readiness to step into the “Open Seas”. With a redefined strategy, a footprint stretching from Sydney to Dubai, and a portfolio of certified, high-security solutions, Savyint Group is ready to dominate the competitive landscape of 2026, delivering uncompromised Digital Trust to the world. Highlights at the event: