Abstract: A closure having a design comprising holographic and non-holographic portions is described. The closure comprises a top panel and a skirt that extends downwards from the outer periphery of the top panel. The skirt's outer surface and the top panel's upper surface collectively comprising an external surface that may be covered by a design, which has a first design portion with a hologram and a second design portion without a hologram.

Abstract: A server computing system initiates a first sub-system to generate a certificate revocation list (CRL) using resources that are separate from resources of a second sub-system that performs certificate authority (CA) management functions other than generating a CRL. The first sub-system receives a command from the second sub-system to update revocation data in a cache that is coupled to the first sub-system and generates a CRL using the updated revocation data in the cache. The first sub-system provides the CRL to the second sub-system.

Abstract: A method and system for identity management certificate operations is described.

Abstract: Certificate renewal is described. A processing device searches a certificate authority (CA) database of digital certificates to identify a certificate that satisfies an expiration condition for automatic renewal. The processing device renews the certificate as a renewed certificate without any user interaction. The processing device is to renew the certificate in view of the expiration condition. The expiration condition includes an expiration of the certificate. When renewing of the certificate, the processing device reuses a key of the certificate for the renewed certificate and sets a new expiration date for the renewed certificate.

Abstract: A certificate revocation list (CRL) deployment system loads a portion of test data that represents revoked certificates into a cache at periodic intervals and generates a CRL for a corresponding periodic interval using the test data that is loaded in the cache at that corresponding periodic interval. The CRL deployment system determines a CRL size that the server computing system is capable to support using the generated CRLs and notifies a user of the CRL size that the server computing system is capable to support.

Abstract: A certificate status distribution system receives a request from a client pertaining to a status of a certificate and determines whether the client is an online certificate status protocol (OCSP) compliant client. The certificate status distribution system sends the certificate status to the client using OCSP in response to a determination that the client is an OCSP compliant client and sends a certificate revocation list to the client in response to a determination that the client is not an OCSP compliant client.

Abstract: A method and system for automatically generating a certificate operation request is described.

Abstract: A Security Domain Access System (SDAS) provides highly available security domain data. The SDAS receives a request pertaining to a security domain. The request includes credentials for accessing a security domain manager server. The SDAS selects one of a plurality of security domain manager servers to process the request based on the credentials and the availability of each of the plurality of security domain manager servers. The SDAS forwards the request to the selected security domain manager server.

Abstract: Certificate renewal is described. A processing device searches a certificate authority (CA) database of digital certificates to identify a certificate that satisfies an expiration condition for automatic renewal. The processing device renews the certificate as a renewed certificate without any user interaction. The processing device is to renew the certificate in view of the expiration condition. The expiration condition includes an expiration of the certificate. When renewing of the certificate, the processing device reuses a key of the certificate for the renewed certificate and sets a new expiration date for the renewed certificate.

Abstract: User interface generation in view of constraints of a certificate profile is described.

Abstract: A method and system for server-side key generation for non-token clients is described.

Abstract: A method and system for pre-encoding a cached CRL is described.

Abstract: A method and system for automatic certificate renewal is described.

Abstract: A server computing system initiates a first sub-system to generate a certificate revocation list (CRL) using resources that are separate from resources of a second sub-system that performs certificate authority (CA) management functions other than generating a CRL. The first sub-system receives a command from the second sub-system to update revocation data in a cache that is coupled to the first sub-system and generates a CRL using the updated revocation data in the cache. The first sub-system provides the CRL to the second sub-system.

Abstract: A Serial Number Management System (SNMS) automatically manages the allocation of unique serial numbers to certificate authority servers in a replicated server environment. The SNMS automatically detects that a Certificate Authority (CA) server has a need for additional unused serial numbers. The SNMS identifies a provider CA server that has unused serial numbers. The SNMS obtains a portion of the unused serial numbers from the provider CA server.

Abstract: A method and system for server-side key generation for non-token clients is described.

Abstract: A method and system for dynamic user interface generation based on constraints of a certificate profile is described.

Abstract: A method and system for automatically generating a certificate operation request is described.

Abstract: A method and system for identity management certificate operations is described.

Abstract: A certificate revocation list (CRL) deployment system loads a portion of test data that represents revoked certificates into a cache at periodic intervals and generates a CRL for a corresponding periodic interval using the test data that is loaded in the cache at that corresponding periodic interval. The CRL deployment system determines a CRL size that the server computing system is capable to support using the generated CRLs and notifies a user of the CRL size that the server computing system is capable to support.