Abstract: A method for authorizing a virtual identity using an access device may include sending, from an access device, a request to a resource through a network. The method may also include accessing a resource challenge that is acceptable to the resource and sending the resource challenge to an identity repository. The method may additionally include receiving, from the identity repository, a first signed resource challenge and signing the resource challenge to generate a second signed resource challenge. The method may further include sending an authorization for the virtual identity to the resource through the network. The authorization may include the first signed resource challenge and the second signed resource challenge.

Abstract: A method of making a payment using an encoded graphic by a user device may include acquiring an image of the encoded graphic, and determining payment information using information associated with the encoded graphic. The method may also include sending a request to an identity repository for a first signature for the payment. The method may additionally include receiving the first signature for the payment from the identity repository. The method may further include sending the payment information and the first signature to a payment gateway.

Abstract: A method of pairing an unregistered device with a virtual identity may include, at a first repository: receiving a request from the unregistered device, sending a pairing code and an identifier to the unregistered device, receiving the pairing code from a registered device, and sending the identifier to the registered device. The method may also include, at a second repository, receiving the pairing code and secret information from the registered device, receiving the pairing code in a transmission associated with the unregistered device, associating the unregistered device with the virtual identity using the pairing code, and sending the secret information to the unregistered device.

Abstract: A method of populating form data may include accessing an electronic form provided by a website. The electronic form may include a plurality of fields. The method may also include using the plurality of fields to request information associated with the plurality of fields from an identity repository and receiving the information associated with the plurality of fields from the identity repository. The method may additionally include using the information associated with the plurality of fields to populate the plurality of fields of the electronic form.

Abstract: A method for disabling a device associated with a virtual identity may include receiving, from the device, a request to use the virtual identity, where the request that may include a passcode guess and a device identifier. The method may also include determining that the passcode guess does not authorize use of the virtual identity and incrementing a number of incorrect passcode guesses received within a time interval. The method may additionally include determining that the number of incorrect passcode guesses received within the time interval is greater than or equal to a threshold. The method may further include storing an indication that subsequent requests associated with the device identifier should not authorize use of the virtual identity.