The Reserve Bank of India (RBI) has recently mandated all banks to migrate their existing online platforms to the exclusive ‘.bank.in’ domain. The central bank issued a circular today, urging financial institutions to complete the transition no later than October 31, 2025.
The decision stems from RBI’s earlier announcement made on February 7, 2025, as part of its broader initiative to enhance cybersecurity measures within the financial sector. The introduction of the ‘.bank.in’ and ‘.fin.in’ domains was envisioned to combat the increasing incidence of online banking fraud and phishing attacks, and to offer a more secure and trustworthy digital environment for customers.
Exclusive Domain for Banks to Curb Digital Fraud
According to the RBI, the move to a dedicated domain space is expected to significantly reduce instances of impersonation and phishing, which often occur when malicious actors use lookalike URLs to deceive customers. With ‘.bank.in’ being a restricted and verified domain, only licensed banks will be able to use it — making it far easier for users to identify authentic banking websites.
ALSO READ: Call for Cyber Experts: Join FCRF Academy as Trainers and Course Creators
“This initiative is aimed at strengthening the cybersecurity framework and enhancing public confidence in digital banking and payment systems,” the RBI said in the circular.
IDRBT Appointed as Exclusive Domain Registrar
To operationalize the initiative, the Institute for Development and Research in Banking Technology (IDRBT) has been designated as the exclusive registrar for the ‘.bank.in’ domain. This appointment has been authorised by the National Internet Exchange of India (NIXI) under the guidance of the Ministry of Electronics and Information Technology (MeitY).
Banks have been advised to reach out to IDRBT via sahyog@idrbt.ac.in to initiate the registration and migration process. IDRBT will support banks throughout the transition, including technical guidance and compliance with domain standards.
A Timely Step Amid Rising Digital Threats
With India witnessing a surge in digital payment adoption, the security of online banking platforms has become a top priority. By creating a dedicated domain space, the RBI hopes to reduce the attack surface available to cybercriminals and ensure a safer user experience for millions of customers.
ALSO READ: Call for Chapters: Contribute to the Book “Cyber Crime – From Theory to Practice”
Cybersecurity experts have welcomed the RBI’s move, stating that domain-specific environments such as ‘.bank.in’ offer increased legitimacy and authentication, while limiting unauthorized usage.
Next Steps for Banks
All banks have been instructed to initiate the domain transition immediately and ensure that their websites and related infrastructure are aligned with the new directive well ahead of the deadline. The RBI also stressed the need for timely public communication to educate customers about the domain change and prevent confusion during the migration phase.