Account fraud and identity theft are frequently the result of single-factor (e.g., ID/password) authentication exploitation. Where risk assessments indicate that the use of single-factor authentication is inadequate, financial institutions should implement multifactor authentication, layered security, or other controls reasonably calculated to mitigate those risks. the 2001 "Guidance" Standard.
A Standard is a Standard where you are required to be in compliance with the Standard.
What you Did Not Quote is the word "Should"
Stating one "Should" impliment MFA is akin to telling someone they should wear a Seatbelt in 1980. It's not Mandantory, but you "should" use one.
DSL
But when it comes to standards alone, there are issues to resolve. The various technologies vying for DSL (digital subscriber line) standards are largely designed around one of two primary technologies: DMT (discrete multitone) and CAP (carrier amplitude/phase modulation).
That Article was from 1998. In 1996 I thoughly Understood why DMT was the Odds Favorite to Win. It was just a matter of Time. And Shareholders were amply rewarded for their Patience, when Texas Instruments Bought Out Amati. TI had already been Manufacturing DMT Chip Sets for Amati ADSL Modems for years.
Little Amati Communication Corp won up against AT&T and Bell Labs.