Secondary device authentication proxied from authenticated primary device

What is claimed is: 1. A primary mobile communication device, comprising: a processor; a camera; a transceiver; a non-transitory memory, wherein the non-transitory memory stores a primary token indicating trust established between the primary mobile communication device and a device authentication server (DAS); and a primary application stored in the non-transitory memory that, when executed by the processor: activates the camera to scan a Quick Response (QR) code from a secondary application at a secondary communication device; and transmits, via the transceiver, the QR code and the primary token to the DAS to indicate a physical nexus between the primary mobile communication device and the secondary communication device and to request extending the trust to include the secondary application at the secondary communication device on behalf of the primary mobile communication device. 2. The primary mobile communication device of claim 1 , wherein the primary application, when executed by the processor, further: receives a secondary device name for the secondary communication device as input after scanning the QR code; and transmits the secondary device name to the DAS along with the QR code and the primary token. 3. The primary mobile communication device of claim 2 , further comprising a display, wherein the primary application, when executed by the processor, further: receives, via the transceiver, an application association list for the primary application from the DAS, the application association list indicating the secondary communication device is associated with the primary mobile communication device; and displays, via the display, an indication that the secondary communication device is associated with the primary mobile communication device. 4. The primary mobile communication device of claim 3 , wherein the application association list is created by the DAS in response to authenticating the primary token. 5. The primary mobile communication device of claim 1 , wherein the primary token stored in non-transitory memory includes a mobile directory number (MDN) of the primary mobile communication device, a device serial number of the primary mobile communication device, a timestamp, a primary flag set to true, and a label. 6. The primary mobile communication device of claim 1 , wherein trust is established with the DAS by mobile access gateway (MAG) authentication, International Mobile Subscriber Identity (IMSI) encryption challenge, or self-identified IMSI. 7. The primary mobile communication device of claim 1 , wherein the primary token provides the primary application access to a particular user's account associated with the primary mobile communication device. 8. The primary mobile communication device of claim 1 , wherein the primary token comprises a specified time to live. 9. The primary mobile communication device of claim 8 , wherein trust is reestablished between the primary mobile communication device and the DAS in response to the specified time to live expiring. 10. The primary mobile communication device of claim 1 , wherein once trust is extended, the secondary application of the secondary communication device initiates a communication session with a network on behalf of the primary mobile communication device based on a secondary token. 11. A method, comprising: storing, in a non-transitory memory of a primary mobile communication device, a primary token indicating trust established between the primary mobile communication device and a device authentication server (DAS); activating, by a primary application stored in the non-transitory memory and executed by a processor of the primary mobile communication device, a camera of the primary mobile communication device to scan a Quick Response (QR) code from a secondary application at a secondary communication device; and transmitting, by the primary application via a transceiver of the primary mobile communication device, the QR code and the primary token to the DAS to indicate a physical nexus between the primary mobile communication device and the secondary communication device and to request extending the trust to include the secondary application at the secondary communication device on behalf of the primary mobile communication device. 12. The method of claim 11 , further comprising: receiving, by the primary application, a secondary device name for the secondary communication device as input after scanning the QR code; and transmitting, by the primary application, the secondary device name to the DAS along with the QR code and the primary token. 13. The method of claim 12 , further comprising: receiving, by the primary application via the transceiver, an application association list for the primary application from the DAS, the application association list indicating the secondary communication device is associated with the primary mobile communication device; and displaying, by the primary application via a display of the primary mobile communication device, an indication that the secondary communication device is associated with the primary mobile communication device. 14. The method of claim 13 , wherein the application association list is created by the DAS in response to authenticating the primary token. 15. The method of claim 11 , wherein the primary token stored in non-transitory memory includes a mobile directory number (MDN) of the primary mobile communication device, a device serial number of the primary mobile communication device, a timestamp, a primary flag set to true, and a label. 16. The method of claim 11 , wherein trust is established with the DAS by mobile access gateway (MAG) authentication, International Mobile Subscriber Identity (IMSI) encryption challenge, or self-identified IMSI. 17. The method of claim 11 , wherein the primary token provides the primary application access to a particular user's account associated with the primary mobile communication device. 18. The method of claim 11 , wherein the primary token comprises a specified time to live. 19. The method of claim 18 , wherein trust is reestablished between the primary mobile communication device and the DAS in response to the specified time to live expiring. 20. The method of claim 11 , wherein once trust is extended, the secondary application of the secondary communication device initiates a communication session with a network on behalf of the primary mobile communication device based on a secondary token.