Abstract: A method and system for establishing a secure communication channel is disclosed. A remotely accessible server updates a used counter value to yield an updated counter value. The used counter value was used to generate a previously used symmetric key for encrypting communications between the server and a mobile handset. The updated counter value is used to generate a symmetric key, which is included in a key transfer message. The key transfer message is asymmetrically encrypted using a handset public key and transmitted to the handset such that it is capable of using a handset private key to decrypt the key transfer message and obtain the symmetric key. Further data received from the handset is decrypted asymmetrically using a server private key and symmetrically using the symmetric key, and further data communicated to the handset is encrypted symmetrically using the symmetric key and asymmetrically using the handset public key.