Abstract: Methods and systems for managing data processing systems are provided. Data processing systems may host various computer-implemented services. Data processing systems may also be changed to operate in different states where one or more currently hosted computer-implemented services may no longer be hosted in the new state. Removal of these no longer hosted computer-implemented services from the data processing systems may cause complications for the data processing systems in the new state. Undefine policies may be preconfigured for one or more hosted computer-implemented services to prevent occurrence of such complications.

Abstract: A method for optimizing software development globalization. The method includes: identifying a globalization element and at least one globalization element data field associated therewith; and configuring, into a source-code and for the globalization element, a globalization element code structure including at least one member key, respectively and at least in part, defining the at least one globalization element data field.

Abstract: Methods and systems for certificate management in a distributed system are disclosed. The distributed system may include data processing systems that utilize certificates issued by a certificate issuer. The data processing systems may be intermittently connected to the certificate issuer. The certificate issuer may, at any point in time, revoke any issued certificate. The certificate issuer may not notify other entities of the revocation. To determine whether a certificate should be treated as being valid, the data processing systems may apply a set of rules to the certificate that compensate for intermittent connectivity to the certificate issuer that may prevent determining whether a certificate has been revoked, while limiting risk due to the potential for a certificate to have been revoked but the revocation not being known.

Abstract: Methods and systems for manage operation of endpoint devices are disclosed. To manage the operation of endpoint devices, management systems may monitor and update the state of the endpoint devices. To manage incongruencies among state updates and the states of the endpoint devices, the endpoint devices may implement a state management model that vests authority over the true states of the endpoint devices in the endpoint devices. Consequently, the endpoint devices may resolve incongruencies by rejecting some state updates that do not reflect the true states of the endpoint devices.

Abstract: Systems, devices, and method for managing data processing systems are disclosed. The data processing systems may be capable of operating in various manners. To manage the data processing systems, onboarding processes may be performed to conform the operation of the data processing systems to meet the expectations of owners of the data processing systems. To facilitate onboarding, onboarding payloads may be generated in a domain in which data necessary for onboarding is available. The onboarding payloads may be transferred to data processing systems in domains in which the necessary data is not available to onboard the data processing systems.

Abstract: Methods and systems for managing endpoint devices are disclosed. The endpoint devices may be managed by onboarding them. To onboarding the endpoint devices, orchestrators may be dynamically selected. The orchestrators may be dynamically selected using rendezvous data packages provided by the orchestrators. The rendezvous data packages may enable a particular orchestrator to be discriminated from the other orchestrators. By dynamically selecting the orchestrator, the endpoint device may be more likely to be onboarded in a manner that aligns its operation with its owner's goals.

Abstract: Methods and systems for managing data processing systems are provided. Data processing systems may host various computer-implemented services. Data processing systems may also be changed to operate in different states where one or more currently hosted computer-implemented services may no longer be hosted in the new state. Removal of these no longer hosted computer-implemented services from the data processing systems may cause complications for the data processing systems in the new state. Undefine policies may be preconfigured for one or more hosted computer-implemented services to prevent occurrence of such complications.

Abstract: Methods and systems for managing the security of distributed systems that utilize certificates for command and control purposes are disclosed. The certificates may be used to delegate authority to various entities and attest public keys associated with the entities. To manage security using the certificates, the system may limit use of certificates and public keys to only those that have been attested. By doing so, the vulnerability to attacks through unauthorized use of keys of delegates may be reduced.

Abstract: Techniques are provided for automated localization of microservices. One method comprises obtaining, by a given microservice of an application, a message to be provided to a client device using an application programming interface (API) of the given microservice, wherein the message comprises a text portion having an identifier, wherein the text portion is in a first language; obtaining, by the given microservice, using the identifier, a translation of the text portion, maintained by the given microservice, in a second language associated with the client device; and presenting, by the given microservice, the message, with the translation of the text portion, to the client device using the API of the given microservice. Continuous integration aggregation techniques may be used to: (i) detect changes to localized files of the application; (ii) transform changed localized files to a file format; and (iii) store the changed localized files in a shared storage for translation.

Abstract: Methods and systems for managing onboarding of endpoint devices are disclosed. Customized onboarding processes may be performed depending on roles for different endpoint devices. During onboarding, the endpoint devices may operate in secure modes of operation which may limit customization of onboarding. To facilitate customization of onboarding, the endpoint device may include tags. The tags may convey information usable to operably connected to intermediary devices that may allow for operable connections to control planes that manage the onboarding processes to be established. The control planes may not be limited by the secure modes of operation and allow for greater customization of onboarding.

Abstract: Systems, devices, and method for managing data processing systems are disclosed. The data processing systems may be capable of operating in various manners. To manage the data processing systems, onboarding processes may be performed to conform the operation of the data processing systems to meet the expectations of owners of the data processing systems. To facilitate onboarding, onboarding payloads may be generated in a domain in which data necessary for onboarding is available. The onboarding payloads may be transferred to data processing systems in domains in which the necessary data is not available to onboard the data processing systems.

Abstract: Systems, devices, and methods for managing operation of data processing systems are disclosed. To manage operation of the data processing systems, onboarding processes may be performed to conform the operation of the data processing systems to meet the expectations of owners of the data processing systems. During onboarding, keys usable to verify subsequently issued commands may be obtained by the data processing systems. The data processing systems may perform verifications processes for issued commands that rely on a root of trust established with the keys rather than identifies of entities that may issue the commands for command verification.

Abstract: Systems, devices, and methods for managing data processing systems are disclosed. The data processing systems may be capable of operating in various manners. To manage the data processing systems, onboarding processes may be performed to conform the operation of the data processing systems to meet the expectations of owners of the data processing systems. To manage security policies of the data processing systems during onboarding, ownership vouchers may be generated to provide data necessary for onboarding that defines security policies, hardware policies, and ownership of the data processing systems. The ownership voucher may be deployed to data processing systems during onboarding to reduce the likelihood of undesired use and/or interactions with the data processing systems.

Abstract: Methods and systems for managing the security of distributed systems that utilize certificates for command and control purposes are disclosed. The certificates may be used to delegate authority to various entities and attest public keys associated with the entities. To manage security using the certificates, the system may limit use of certificates and public keys to only those that have been attested. By doing so, the vulnerability to attacks through unauthorized use of keys of delegates may be reduced.

Abstract: Methods and systems for certificate management in a distributed system are disclosed. The distributed system may include data processing systems that utilize certificates issued by a certificate issuer. The data processing systems may be intermittently connected to the certificate issuer. The certificate issuer may, at any point in time, revoke any issued certificate. The certificate issuer may not notify other entities of the revocation. To determine whether a certificate should be treated as being valid, the data processing systems may apply a set of rules to the certificate that compensate for intermittent connectivity to the certificate issuer that may prevent determining whether a certificate has been revoked, while limiting risk due to the potential for a certificate to have been revoked but the revocation not being known.