AppLife Server provides access control to applications and updates based on string token identification. The client is identified through either the auto-generated Client ID or the integrator designated Client Access Key. Access Control Lists can be created that include a list of values that identify clients by either Client ID or Client Access Key. These lists can then be assigned to individual applications and update versions.