Abstract: A blockchain-based system for manages the root of trust for a swarm of deployed devices and maintains separation between the control and data planes of the device network through policies distributed from the blockchain via a message broker system and enforced in the secure processing environment of the devices. The blockchain is operated by a set of stakeholder entities that provide consensus for adding transactions to the blockchain or channels thereof, which comprise attestation data for use by the devices during onboarding, firmware installation and updates, and policy updates. Devices subscribe to message topics on a message broker system to obtain control plane and data plane messages. Access to message topics is managed by rules enforced by the secure processing environment.

Abstract: A system and method for managing a plurality of network-enabled client devices such as Internet of Things (IoT) and smart devices employs a distributed ledger or blockchain to store security-related information for each client device. Access to the distributed ledger is provided through a proxy computing system that is configured to exchange security-related messages with the client devices over a first communication path, which may be over a public network; and to engage in transactions with or query the distributed ledger on behalf of the client devices over a second communication path, which is a private channel Vendible data published by the client devices may be routed by the proxy computing system to a data broker or publishing system in a manner that removes identifying information from the vendible data.

Abstract: A system and method for managing a plurality of network-enabled client devices such as networking equipment and Internet of Things (IoT) devices which employs a distributed ledger, or blockchain, to store network configuration information for each client device. Access to the distributed ledger may be provided through a proxy computing system that is configured to exchange control messages with the client devices. Network configuration information is defined in smart contracts stored in the distributed ledger which are executed on registration of the network-enabled client device in the distributed ledger.

Abstract: A system and method of determining an attestation or identity score of a user of a communication device employs metadata stored in a plurality of client devices, such as IoT devices. A request for attestation, comprises a unique identifier associated with the communication device and an input or shared value. The unique identifier is used to identify, in a distributed ledger (blockchain), client devices that are paired with the communication device. Metadata stored in association with each of the client devices is retrieved and compared to the input or shared value, and a sub-identity score is determined based on the extent to which there is a match and the reliability of the client device. The sub-identity scores are combined to obtain an identity score reflecting a confidence level in the user and/or communication device.

Abstract: A system and method for managing a plurality of network-enabled client devices such as networking equipment and Internet of Things (IoT) devices which employs a distributed ledger, or blockchain, to store network configuration information for each client device. Access to the distributed ledger may be provided through a proxy computing system that is configured to exchange control messages with the client devices. Network configuration information is defined in smart contracts stored in the distributed ledger which are executed on registration of the network-enabled client device in the distributed ledger.

Abstract: A system and method for managing a plurality of network-enabled client devices such as Internet of Things (IoT) and smart devices employs a distributed ledger or blockchain to store security-related information for each client device. Access to the distributed ledger is provided through a proxy computing system that is configured to exchange security-related messages with the client devices over a first communication path, which may be over a public network; and to engage in transactions with or query the distributed ledger on behalf of the client devices over a second communication path, which is a private channel. Vendible data published by the client devices may be routed by the proxy computing system to a data broker or publishing system in a manner that removes identifying information from the vendible data.

Abstract: A mobile communication device identifies and selects a wireless local area network (WLAN) available for communications in its coverage area. Automatically, without detecting any requests made by a user via a browser application. The mobile device initiates a request (e.g. an HTTP GET request) to a predetermined server site of a communication network which is outside of the WLAN. In response to initiating the request, the mobile device receives a response message via the WLAN and identifies, from the response message, whether the request to the predetermined server site has been redirected to a redirect server site. The WLAN may be a WLAN “hotspot,” where the redirect server site is a login server. The identifying may be performed by comparing content from the response message to predetermined content of the predetermined server site. In response to identifying that the request has been redirected, the mobile device causes an indication to be produced at its user interface.

Abstract: A system and method for managing a plurality of network-enabled client devices such as networking equipment and Internet of Things (IoT) devices which employs a distributed ledger, or blockchain, to store network configuration information for each client device. Access to the distributed ledger may be provided through a proxy computing system that is configured to exchange control messages with the client devices. Network configuration information is defined in smart contracts stored in the distributed ledger which are executed on registration of the network-enabled client device in the distributed ledger.

Abstract: A system and method of determining an attestation or identity score of a user of a communication device employs metadata stored in a plurality of client devices, such as IoT devices. A request for attestation, comprises a unique identifier associated with the communication device and an input or shared value. The unique identifier is used to identify, in a distributed ledger (blockchain), client devices that are paired with the communication device. Metadata stored in association with each of the client devices is retrieved and compared to the input or shared value, and a sub-identity score is determined based on the extent to which there is a match and the reliability of the client device. The sub-identity scores are combined to obtain an identity score reflecting a confidence level in the user and/or communication device.

Abstract: A mobile communication device identifies and selects a wireless local area network (WLAN) available for communications in its coverage area. Automatically, without detecting any requests made by a user via a browser application.. The mobile device initiates a request (e.g. an HTTP GET request) to a predetermined server site of a communication network which is outside of the WLAN. In response to initiating the request, the mobile device receives a response message via the WLAN and identifies, from the response message, whether the request to the predetermined server site has been redirected to a redirect server site. The WLAN may be a WLAN “hotspot,” where the redirect server site is a login server. The identifying may be performed by comparing content from the response message to predetermined content of the predetermined server site. In response to identifying that the request has been redirected, the mobile device causes an indication to be produced at its user interface.

Abstract: A system and method for providing a user interface that allows users to change the active line on which an outgoing call may be placed. In example embodiments, upon detecting call screen interaction a line selection menu is displayed. The line selection menu contains a plurality of line identifiers, each line identifier uniquely identifying a corresponding one of the multiple communication lines accessible at the mobile device. A system and method is also presented for providing a call log for identifying call activity associated with a plurality of communication lines.

Abstract: A system and method for providing a user interface that allows users to change the active line on which an outgoing call may be placed. In example embodiments, upon detecting call screen interaction a line selection menu is displayed. The line selection menu contains a plurality of line identifiers, each line identifier uniquely identifying a corresponding one of the multiple communication lines accessible at the mobile device. A system and method is also presented for providing a call log for identifying call activity associated with a plurality of communication lines.

Abstract: A system and method for providing a user interface that allows users to change the active line on which an outgoing call may be placed. In example embodiments, upon detecting call screen interaction a line selection menu is displayed. The line selection menu contains a plurality of line identifiers, each line identifier uniquely identifying a corresponding one of the multiple communication lines accessible at the mobile device. A system and method is also presented for providing a call log for identifying call activity associated with a plurality of communication lines.

Abstract: To promote network security in a wireless local area network (WLAN), a mobile communication device, which is operable as a mobile wireless access point, may read a WLAN identifier that is known to be used by the WLAN and an indication of a channel on which a wireless access point of the WLAN is known to operate. The device may then monitor the channel for a transmission of the WLAN identifier. The mobile wireless access point may be configured to operate using the selected channel so that the monitoring occurs on the same channel as that on which the mobile wireless access point is operating. The transmission, if detected, may be considered to indicate that the mobile communication device is within the WLAN. Upon detecting the transmission, use of the WLAN identifier by the mobile wireless access point at the mobile communication device may be prevented, e.g. by requiring the mobile wireless access point to use a different WLAN identifier or by disabling the mobile wireless access point.

Abstract: The disclosure recites a system and method of identifying location data for a server device managing communications for a wireless network. The method comprises: obtaining location data for the server device; identifying a location for the server device by analyzing at least the location data; updating data in the server device with the location; identifying a communication transmission range for the location for the server device; and configuring communications generated by the server device to conform to the communication transmission range.

Abstract: A system and method implemented at a communication device for providing access to telephony services over one or more of a number of communication networks, including cellular networks and IP-based fixed and wireless networks. A mobile device may be configurable for voice communication over both a cellular network and a LAN (e.g. a wireless LAN), and may be adapted to place and receive calls via a PBX over one of the cellular network and the LAN. When it is determined that the mobile device is configured for voice communication using one or both of the cellular network connection and the LAN connection, the mobile device may automatically adapt its user interface to reflect the availability of voice communication only over those connections that are available.

Abstract: A system and method implemented at a communication device or mobile hotspot device for providing access to data services over a wireless communication network to one or more user devices. The communication or hotspot device is adapted to provide router, mobile hotspot-type or ad hoc networking functions to user devices such as laptops, tablets, and other entertainment and productivity devices adapted to communicate over a wireless LAN and to provide access to broadband data services. The data services provided over the network may be subject to one or more data allowances or data transfer limits. The communication or hotspot device is adapted to manage the user device connections and data transfer to and from the communication device within the data allowances or according to predetermined prioritization.

Abstract: A system and method for providing a user interface that allows users to change the active line on which an outgoing call may be placed. In example embodiments, upon detecting call screen interaction a line selection menu is displayed. The line selection menu contains a plurality of line identifiers, each line identifier uniquely identifying a corresponding one of the multiple communication lines accessible at the mobile device. A system and method is also presented for providing a call log for identifying call activity associated with a plurality of communication lines.

Abstract: To promote network security in a wireless local area network (WLAN), a mobile communication device, which is operable as a mobile wireless access point, may read a WLAN identifier that is known to be used by the WLAN and an indication of a channel on which a wireless access point of the WLAN is known to operate. The device may then monitor the channel for a transmission of the WLAN identifier. The mobile wireless access point may be configured to operate using the selected channel so that the monitoring occurs on the same channel as that on which the mobile wireless access point is operating. The transmission, if detected, may be considered to indicate that the mobile communication device is within the WLAN. Upon detecting the transmission, use of the WLAN identifier by the mobile wireless access point at the mobile communication device may be prevented, e.g. by requiring the mobile wireless access point to use a different WLAN identifier or by disabling the mobile wireless access point.

Abstract: To promote network security in a wireless local area network (WLAN), a mobile communication device, which is operable as a mobile wireless access point, may read a WLAN identifier that is known to be used by the WLAN and an indication of a channel on which a wireless access point of the WLAN is known to operate. The device may then monitor the channel for a transmission of the WLAN identifier. The mobile wireless access point may be configured to operate using the selected channel so that the monitoring occurs on the same channel as that on which the mobile wireless access point is operating. The transmission, if detected, may be considered to indicate that the mobile communication device is within the WLAN. Upon detecting the transmission, use of the WLAN identifier by the mobile wireless access point at the mobile communication device may be prevented, e.g. by requiring the mobile wireless access point to use a different WLAN identifier or by disabling the mobile wireless access point.