Mobile devices are increasingly used for both personal and work purposes. As mobile connectivity grows, security risks have also increased, necessitating new authentication methods. One-time passwords (OTPs), which have been used for over 25 years, are now obsolete and insecure due to vulnerabilities like man-in-the-middle attacks targeting SMS OTPs. New solutions using public key infrastructure (PKI) certificates on mobile devices can eliminate these attacks by uniquely identifying devices for two-factor authentication. Mobile PKI provides a secure authentication method that leverages the ubiquity of mobile phones and can be used across multiple applications and services.