The present invention provides a method involving a tamper-resistant module and an authentication server. The method includes receiving, at the tamper-resistant module, information encrypted using a first secret key stored in the authentication server. The method also includes authenticating the authentication server in response to decrypting the information using a second secret key stored in the tamper-resistant module.