Abstract: Systems and methods for bestowing trust from a first application to a second application on a single device are provided. A first application has an established trust with an external service provider and a certificate registered with the service provider. In a method, a second application is initiated including generating a key pair and obtaining a certificate for secure communication with the service provider. One of the first application or the second application being a pairing application requests and receives from a secure gateway a pairing key for pairing with the other of the first application or the second application being a pairing receiving application. The pairing application sends the received pairing key to the pairing receiving application using inter-application communication. The pairing receiving application confirms the pairing key to the secure gateway to pair the certificates of the first application and the second application for the external service provider.

Abstract: A method and system for conducting batched transaction authorisations from a mobile device is disclosed. The method includes transmitting a batched transactions list including details of multiple transactions loaded against an account and awaiting authorisation, to the mobile device, over a secure connection between an authentication server and the mobile device, and receiving a batched transaction authorisation message from the mobile device over the secure connection including a positive or negative authorisation result in respect of two or more of the transactions in the batched transaction list, each authorisation result in the batched transaction authorisation message having been individually signed with a private key associated with a unique digital certificate of the mobile device.

Abstract: A method and system for securing an electronic communications session between a mobile device and a network server is provided. The method includes requesting, from the mobile device, a unique session identifier from an authentication server. The authentication server in turn requesting the session identifier from the network server on behalf of the mobile device and, upon receipt thereof, communicating it to the mobile device over a secure communication channel between the mobile device and the authentication server, established using a unique digital certificate on the mobile device which was previously issued to it by a trusted certification authority. The session identifier being useable by the mobile device and network server to secure, mutually validate and authenticate the electronic communication session between them conducted by means of a conventional electronic communications protocol.