Abstract: The ability to connect a device to the Internet or another type of network from various network access points in a convenient manner is contemplated. The device may be conveniently connected to the desired network without requiring user input of a username and password when connecting to the various network access points.

Abstract: Authorizing an application to access web services or other electronic services is contemplated. Authorization of application may include requiring the application to successfully obtain an appToken and a userToken. The appToken may be provided by an application administrator to attest to an authenticity or level of trust with the application. The userToken may be issued by an identity provider (IdP) attest to an authenticity or level of trust with a user of the application. A service provider sourcing the services may analyze the appToken and userToken to determine content available to application.

Abstract: Providing access to online services is contemplated. The online services authorized for access may be limited or controlled according to a location of an access point used to facilitate access to the online services. This location based authorization may be useful in providing access to online services that have location dependent restraints.

Abstract: The ability to connect a device to the Internet or another type of network from various network access points in a convenient manner is contemplated. The device may be conveniently connected to the desired network without requiring user input of a username and password when connecting to the various network access points.

Abstract: Provisioning a device with a certificate is contemplated. The certificate may be used to verify whether the device or a user of the device is authorized to access electronic content, services, and signaling. The certificate may be provisioned in relation to the device having successfully completed a two-factor authentication process so that an entity providing the certificate need not have to repeat the two-factor authentication process.

Abstract: Providing virtual private network (VPN) sessions or other types of secure or private access to data when a client authorized to access the data travels or otherwise roams from a home network to a partner network is contemplated. The VPN session may be established as part of or as a result of an authentication process undertaken by the client when gaining access to the partner network, such as but not necessarily limited to a home network authentication process undertaken at the partner network to authenticate the client to access partner network services.

Abstract: The ability to connect a device to the Internet or another type of network from various network access points in a convenient manner is contemplated. The device may be conveniently connected to the desired network without requiring user input of a username and password when connecting to the various network access points.

Abstract: A base station and system configured to support interfacing digital and analog devices with a legacy alarm system in a manner that allows messages from the legacy alarm system to pre-empt other messaging, if needed, when the messaging takes place through the same gateway as that which is used by the legacy alarm system.

Abstract: A method of facilitating zero sign-on access to media services depending on trust credentials. The trust credentials may be cookies, certificates, and other data sets operable to be stored on a device used to access the media services such that information included therein may be used to control the zero sign-on capabilities of the user device.

Abstract: A authenticating system and process for authenticating user devices to a access a media service where access to certain portions of the media service may be limited according to a gateway or other device used by a user device to facilitate interfacing a user with the media service. The authentication may be achieved without directly assessing a trustworthiness of the user devices, and optionally, without requiring a user thereof to complete a sign-on operation.

Abstract: A base station and system configured to support interfacing digital and analog devices with a legacy alarm system in a manner that allows messages from the legacy alarm system to pre-empt other messaging, if needed, when the messaging takes place through the same gateway as that which is used by the legacy alarm system.

Abstract: Each client device among a group of client devices whose access to a network is controlled by the same Network Access Control server will have a unique physical address. However, the same physical address may exist among a group of client devices controlled by different Network Access Control server. To detect and block clone devices from obtaining service, each Network Access Control server will have its own identifier and this identifier is one of the authorization parameters used by the Dynamic Host Configuration Protocols server for determining whether the request for an IP address is from an authorized client device.

Abstract: The fingerprint value of the firmware or software of a client device is received and the validity of the fingerprint is verified. Network access control device is notified when the fingerprint of the firmware or software from the client device is determined to be not authorized.