A method and system for implementing secure communication in an un-trusted execution environment. The method includes transmitting respective first and second certificates between a first component and a second component, wherein the first certificate and the second certificate are respectively hidden within software code comprising the first component and the second component. A secure communication channel is then generated between the first component and the second component by the second component using a first public key of the first certificate and the first component using a second public key of the second certificate. The identity of the first component is verified by the second component checking the first certificate with respect to a certificate authority. The identity of the second component is verified by the first component checking the second certificate with respect to the certificate authority. Upon successful verification of the first certificate and the second certificate, a data exchange is implemented via the secure communication channel.