A system (1) and method for authenticating a communications channel (3) between a mobile handset (5) associated with a user (7) and an application server (9), for uniquely identifying the mobile handset (5) and for encrypting communications between the mobile handset (5) and the application server (9) over the communication channel (3) is provided. The system (1) includes a certificate authority (11 ) configured to issue digital certificates (17, 45) to the handset (5) and the application server (9), as well as software applications (13, 15) operating on both the handset (5) and application server (9). The digital certificates (17, 45) may be used by the handset (5) and application server (9) to uniquely identify one another as well as to exchange encryption keys (33, 47) by means of which further communication between them may be encrypted.
展开▼
