Government legislation looms in the US, Europe and UK, adding to what we already knew about ensuring that end device users are properly assured and protected. The liability on OEMs will no longer stop once products are shipped - development processes need to lend themselves to prioritizing security for the full lifetime of a product.
In this newsletter, we'd like to share with you our new Cybersecurity White Paper: Embedded Linux, Licensing and Cybersecurity, eeNews' article summarizing our 8-Stage approach, technical level blogs, our latest product news and contributions from key partners.
You can get in touch with me directly via LinkedIn at any time, and follow my posts for my thoughts on where we are and where we’re going with connected embedded secure devices.
George Grey, Foundries.io CEO
Articles, Blogs & Expert Updates
We hope you find our latest content useful in shaping how you might approach your specific projects.
As cybersecurity becomes an increasingly important design consideration, new challenges arise as devices are implemented with secure boot and hardware security elements and/or secure enclaves. Legal issues arise from the use of GPL software, and increasingly stringent worldwide legislation, including the proposed EU Cyber Resilience act that impacts a wide range of market segments from consumer to industrial. This requires new security measures to be present on all devices including secure boot, SBOM auditing and FOTA update capabilities.
Download this new white paper, guiding you through the demands of forthcoming legislation, potential pitfalls and how to avoid crippling fines. Foundries.io CEO George Grey explores the challenges and best practices for implementation of Linux device security on current and new IoT and Edge products.
eeNews ARTICLE: Unifying the Fragmented Embedded Product Lifecycle OEMs lose time and money as a result of a fragmented embedded product lifecycle. Pressure is increasing for device builders to change their development processes, with legislation on its way insisting that products are fully secured. Once devices are shipped, it is often the case that product maintenance out in the field is not up to scratch, and in many cases cannot withstand the increasing threat of cyber attacks. But why is getting maintenance and security right such a headache?
This new eeNews article takes you through the 8-Stage Product Lifecycle that Foundries.io has identified, and outlines how FoundriesFactory provides the remedy.
We provide engineers with technical dive into The Update Framework (TUF) in this blog from our Backend Senior Software Engineer, Volodymyr Khoroz. Read on to understand why we would recommend choosing a specific type of cryptographic keys to use within TUF and how the Foundries.io team have worked on a one button solution for key rotation.
The Public Key Cryptography Standard #11 defines a secure API which allows clients to access cryptographic devices for key generation, encryption, decryption, digital signatures and storage in a future-proof vendor-neutral way. Read our Platform Security Tech Lead Jorge Ramirez Ortiz's technical blog to understand Foundries.io's approach to securing keys and certificates, using the OP-TEE PKCS#11 standard within our Linux microPlatformTM (LmP).
Our major new FoundriesFactory® release, v90, was recently made available to all our customers. Highlights include initial support for NXP® i.MX 93 and i.MX 8ULP Evaluation Kits, plus Fioconfig support for client certificate rotation. We have also made updates to the OE/Yocto, kernel, BSPs, packages, and utilities.
These and further highlights are listed below, and you can also see the detailed release notes here. The full documentation for our v90 release can be found here.
To learn more about v90 and our FoundriesFactory DevOps product in relation to your exact needs, you can book a personalized demo experience with one of our experts.
At Embedded World 2023, our CMO John Weil discussed how Foundries.io and TI work together to streamline designs and speed time to market for IoT and Edge AI products. Watch the short video to find out more.
Learn how to leverage ADLINK’s I-PI SMARC IMX8M Plus development kit, featuring NXP® i.MX 8M Plus application processors, to fulfil your home automation needs using hardware-to-top.
Go Ahead and Find Out More
There are several ways you can find out more, from online resources to booking a 1:1 online meeting: If you’re new to Foundries.io and our FoundriesFactory product, take a look through our quick introduction video. You can also catch up on our latest blogs.
You are receiving this email because you opted in via our website or because you have recently become a new user of FoundriesFactory and we want to keep you updated with our news and activities.
Our mailing address:
Foundries.io, The Bradfield Centre, 184 Cambridge Science Park, Cambridge
/8-Stage%20Marketing%20FIO%20Asset%20Problem%20Copyright_1.png?upscale=true&width=720&upscale=true&name=8-Stage%20Marketing%20FIO%20Asset%20Problem%20Copyright_1.png)
