Mender; the open-source software update solution
0 likes1,188 views
The document outlines the capabilities and features of Mender, an open-source over-the-air update manager for embedded Linux devices, designed to handle challenges such as remote updates and security vulnerabilities. It highlights requirements for robust, secure, and efficient update strategies while discussing common installer approaches and the limitations of package-based updates. Furthermore, it emphasizes Mender's architecture, including its end-to-end update processes and integration with various device environments.
1 of 28
Downloaded 17 times
Ad
Recommended
Project ACRN hypervisor introduction
Project ACRN hypervisor introduction Project ACRN The document discusses ACRN, an open-source lightweight hypervisor intended for consolidating heterogeneous workloads and streamlining IoT edge development. It provides an overview of ACRN's architecture and key modules, including boot process, CPU virtualization, memory management, interrupt handling, pass-through devices, and device model for handling I/O requests. The document also outlines enhancements in ACRN 2.0, such as supporting new operating systems and safety/real-time virtual machines.
Containers 101
Containers 101Black Duck by Synopsys The document provides an overview of container technology, focusing on its benefits, terminology, and operational principles, including the importance of immutability, ephemerality, and resource management. It outlines key concepts like microservices, container images, and secure deployment practices while addressing potential security issues and the importance of trusted sources. Additionally, it discusses container orchestration, networking policies, and best practices for managing secrets and debugging containers.
Delivering Docker & K3s worloads to IoT Edge devices
Delivering Docker & K3s worloads to IoT Edge devicesAjeet Singh Raina The document discusses the integration of Docker and K3s with NVIDIA Jetson Nano for IoT edge computing, highlighting its capabilities for AI applications and GPU-accelerated containerized environments. It provides installation instructions and workflows for deploying applications, including examples of real-time systems for mask detection and drone delivery services. Key features of K3s as a lightweight Kubernetes distribution and Docker's support for multi-architecture are also emphasized.
Linux
Linux Kevin James Linux is an open-source operating system based on Unix. It is robust, scalable, stable, and secure. Linux was originally developed in 1991 by Linus Torvalds and is freely available. Common Linux distributions include Red Hat, Debian, SUSE, and Gentoo. When installing Linux, important steps include identifying compatible hardware, determining the installation method, configuring partitions, and selecting packages to install based on the intended use of the system.
Microsoft Windows Server 2022 Overview
Microsoft Windows Server 2022 OverviewDavid J Rosenthal Windows Server 2022 introduces advanced multi-layered security and hybrid capabilities, allowing organizations to enhance their security posture and extend their data centers to Azure for improved IT efficiency. With features like secured-core server, Azure Arc, and improved storage migration, businesses can effectively manage on-premises and cloud environments while empowering developers with flexible application deployment options. The platform also includes tools for app modernization, making it easier to build and run diverse applications at scale.
Kali Linux
Kali LinuxChanchal Dabriya Kali Linux is a Debian-derived Linux distribution designed for digital forensics and penetration testing. It contains over 300 security tools and can run on various hardware architectures. Kali is an updated version of BackTrack, which it replaced in 2013 to address dependency issues. Some key tools included are nmap, Wireshark, John the Ripper, and Aircrack-ng. It is maintained by Offensive Security and intended to perform tests from an attacker's perspective to evaluate system vulnerabilities.
Linux
LinuxInternational Islamic University The document discusses the history and features of the Linux operating system. It notes that Linux was developed in 1991 by Linus Torvalds, a student at the University of Helsinki. Torvalds released the Linux source code publicly, allowing thousands of developers to contribute to its growth. Linux is an open-source operating system that provides many of the same functions as proprietary systems like Windows and macOS, including user interfaces, task management, and support for various hardware devices.
what is LINUX ? presentation.
what is LINUX ? presentation.saad_khan1122 Linux is an open-source operating system that runs on various hardware platforms. It was created in 1991 by Linus Torvalds and is developed collaboratively by its community of users and developers. Linux exists in many different distributions, or "distros", that package the Linux kernel along with other software. Popular distros include Ubuntu, Fedora, openSUSE, Debian, and Arch Linux. Linux is widely used for servers, mainframes, embedded systems, and as an alternative to Windows on desktop computers and laptops. It offers advantages like open source access, customizability, security, and reliability.
A 64-Bit RISC Processor Design and Implementation Using VHDL
A 64-Bit RISC Processor Design and Implementation Using VHDL Andrew Yoila This document presents the design and implementation of a 64-bit RISC processor using VHDL, emphasizing its architecture, instruction set, and operational characteristics. The report highlights the significance of RISC in enhancing processing speed and efficiency compared to CISC architectures, and details the functionality of the arithmetic logic unit (ALU) integrated into the design. Future work aims to expand the instruction set and improve pipeline efficiency.
Android 10
Android 10kpraveen_slideshare Android 10 includes several new features and improvements including enhanced privacy and security features, expanded digital wellbeing tools, better support for new hardware, and under-the-hood optimizations. Key changes involve moving the root file system to the system image partition, adding new kernel utilities to help with ABI compatibility, and introducing services like SystemSuspend HIDL to leverage benefits of the Android HIDL infrastructure.
Fuchsia
Fuchsiakasyamgurulakshmi Fuchsia OS is a new operating system being developed by Google as a replacement for Android and Chrome OS. It uses a microkernel called Zircon instead of the Linux kernel. Fuchsia is designed to work across all device types from phones to PCs using a single codebase. The goal is to improve cross-device compatibility and app development. It uses programming languages like Rust and Dart along with the Flutter framework.
Embedded linux
Embedded linuxWingston Embedded Linux provides a standardized operating system solution for embedded systems through the Linux kernel. The Linux kernel abstracts the underlying hardware and provides drivers to interface with hardware peripherals. This allows application developers to focus on their code without needing to manage low-level hardware interactions. A bootloader initializes the hardware and loads the Linux kernel from memory. The kernel then loads and runs programs stored in the filesystem. Cross-compilers allow the same source code to target different processor architectures. Libraries and drivers help share code and resources across applications and hardware.
Linux
Linuxsalamassh Linux is an operating system created by Linus Torvalds that enables applications and users to access computer devices. It is similar to Windows and OS X but is unique in being modular and flexible, allowing developers to use many languages. Linux has become very popular, powering major websites and representing a $25 billion ecosystem in 2008 as it is installed on computers and relied on by companies like Google, Twitter, and YouTube.
Embedded Android : System Development - Part IV (Android System Services)
Embedded Android : System Development - Part IV (Android System Services)Emertxe Information Technologies Pvt Ltd The document provides an overview of Android system services, detailing their types—started, bound, and scheduled—and how they operate, including inter-process communication (IPC) methods like AIDL and Binder. It explains the process of adding a custom service in Android, including writing the service and interface, registering the service, and configuring security policies. Finally, it highlights the importance of properly compiling and testing these services within the Android development framework.
Getting Started with Buildroot
Getting Started with BuildrootTrevor Woerner The document provides an extensive overview of Buildroot, an embedded Linux build system, detailing its capabilities, configuration options, and the process for building custom embedded Linux systems. Key topics include cross-compilation, package management, and the customization of filesystem images through pre-defined configurations and package infrastructures. It highlights the importance of using established tools and methodologies to simplify the development of embedded Linux software.
Flutter Introduction and Architecture
Flutter Introduction and ArchitectureJenish MS Flutter is an open-source UI toolkit developed by Google for building high-performance applications across multiple platforms from a single codebase using the Dart programming language. It offers customizable widgets, a rich architecture that includes a platform-specific embedder, engine, and framework components, and supports both stateful and stateless widgets for efficient UI development. Additionally, Flutter's hot reload feature and a large developer community enhance its appeal for rapid and flexible app development.
Linux
Linuxdwarfyray Linux is a free and open-source operating system based on the Linux kernel, which was created by Linus Torvalds in 1991. It is widely used on servers, desktops, and embedded devices. Major Linux distributions combine the Linux kernel with tools and libraries from the GNU operating system and various application software into a format that is easy to install and use. Linux has gained popularity for its security, reliability, and low cost as well as avoiding vendor lock-in.
Managed disk-Azure Storage Evolution
Managed disk-Azure Storage EvolutionSiraj Mohammad The document outlines features of Azure Managed Disks, including their categorization (standard and premium), storage account requirements, and advantages such as high availability, direct management by Azure, and scalability without account limitations. It highlights the top-level management of resources like snapshots and images, along with IOPS metrics for different disk sizes. Additionally, it provides guidance on creating encrypted managed disks using Azure CLI and integrating security features like BitLocker and Azure Key Vault.
Linux command ppt
Linux command pptkalyanineve Here are the key differences between relative and absolute paths in Linux:
- Relative paths specify a location relative to the current working directory, while absolute paths specify a location from the root directory.
- Relative paths start from the current directory, denoted by a period (.). Absolute paths always start from the root directory, denoted by a forward slash (/).
- Relative paths are dependent on the current working directory and may change if the working directory changes. Absolute paths will always refer to the same location regardless of current working directory.
- Examples:
- Relative: ./file.txt (current directory)
- Absolute: /home/user/file.txt (from root directory)
So in summary, relative paths
Embedded Linux from Scratch to Yocto
Embedded Linux from Scratch to YoctoSherif Mousa Embedded Linux is the use of the Linux kernel and operating system components adapted for embedded systems with limited resources. Building an embedded Linux system involves compiling the cross-compiler toolchain, bootloader, Linux kernel, root filesystem, busybox commands, and startup scripts. This can be done from scratch or using automated build tools like Buildroot or Yocto Project, which simplify and standardize the process of building a custom embedded Linux image.
Unix++: Plan 9 from Bell Labs
Unix++: Plan 9 from Bell LabsAnant Narayanan Plan 9 from Bell Labs is an advanced distributed operating system, considered a true successor to Unix, aiming to address limitations of modern Unix-like systems. It introduces concepts like 'everything is a file' and a uniform interface for resources, differing significantly from traditional Unix systems. The document discusses various features and tools within Plan 9 and encourages developers to contribute to its community.
Yocto Project introduction
Yocto Project introductionYi-Hsiu Hsu The document provides an introduction to the Yocto Project, including what it is, its main components, and workflow. It describes the Yocto Project as being comprised of Poky (the build system), tools, and upstreams. Poky contains BitBake (the build engine) and metadata (task configurations and definitions). It outlines the main components, including sub-projects, and compares the Yocto Project to OpenEmbedded. Finally, it summarizes the Yocto Project workflow, which involves configuring the build using recipes and layers then building packages, images, and cross-development toolchains.
presentation on Docker
presentation on DockerVirendra Ruhela Docker is an open platform for developing, shipping, and running distributed applications. It allows applications to be shipped and run in lightweight containers that can run on any Linux server. Docker uses operating-system-level virtualization and cgroups isolation to deliver lightweight containers quickly. Key features of Docker include portability, lightweight containers that share resources and isolate processes, and automated workflows.
Zephyr-Overview-20230124.pdf
Zephyr-Overview-20230124.pdfibramax - The document describes the Zephyr real-time operating system which is open source, has a vibrant community, and is built with safety and security in mind. It supports multiple architectures and hardware boards and has vendor-neutral governance.
- Key features include being highly configurable, modular, and product development ready using long-term supported releases that include security updates. It provides a range of OS services and supports over 100 sensors out of the box.
- The project focuses on safety and has established committees to improve security practices and work towards safety certification for applications requiring functional safety standards like IEC 61508.
Secure Embedded Systems
Secure Embedded SystemsInformatik-Forum Stuttgart e.V. The document discusses secure embedded systems as a requirement for cyber physical systems and the internet of things. It begins by providing examples of attacks on modern embedded systems like cars, industrial control systems, smart grids, and medical devices. It then discusses trends increasing security risks for embedded systems like network connectivity and standardization. Finally, it outlines requirements for future secure embedded systems and describes techniques like hardware security modules, secure elements, physical unclonable functions, and trusted operating systems to provide security in embedded systems going forward.
Kali presentation
Kali presentationZain Ul abadin Kali Linux is a specialized operating system designed for penetration testing and security auditing, featuring over 300 tools and developed by Offensive Security. Key tools include Metasploit for backdooring, SQLMap for database exploitation, and Aircrack for wireless network attacks. In contrast to Ubuntu, which serves general desktop purposes, Kali is tailored for professionals in cybersecurity and digital forensics.
Linux Tutorial For Beginners | Linux Administration Tutorial | Linux Commands...
Linux Tutorial For Beginners | Linux Administration Tutorial | Linux Commands...Edureka! This document outlines a comprehensive Linux administration training program, covering topics such as the history of Linux, various distributions, command line operations, networking, and user management. Key Linux commands and their functionalities for file manipulation, process management, and permissions are detailed alongside practical exercises. The training also includes working with Linux repositories, environment variables, and regular expressions.
Introduction to Linux
Introduction to Linux Harish R This document provides an overview of a presentation on Linux programming and administration. It covers the history of Unix and Linux, files and directories in Linux, Linux installation, basic Linux commands, user and group administration, and LILO (Linux Loader). The document introduces key topics like Unix flavors, Linux distributions, partitioning and formatting disks for Linux installation, the file system hierarchy standard, and access permissions in Linux.
Mender: The open-source software update solution
Mender: The open-source software update solutionMender.io Drew Moseley is an embedded solutions architect at Mender.io, which provides an open source over-the-air update manager for embedded Linux devices. He discussed challenges with traditional update methods, requirements for secure and robust OTA updates, and how Mender addresses these challenges through its dual A/B partitioning, rollback capability, and support for full system and application updates across many embedded environments and device types. He then demonstrated Mender and discussed its architecture, community, and commercial support offerings.
Software Updates for Connected Devices - OSCON 2018
Software Updates for Connected Devices - OSCON 2018Mender.io Drew Moseley presented on software update strategies for embedded devices. He discussed the need for remote updates to address bugs and add new features. Key considerations for embedded updates include robustness, security, integration with existing environments, ease of use, bandwidth efficiency, and minimizing downtime. Common update strategies like in-place, asymmetric maintenance mode, and symmetric dual rootfs were compared based on these criteria. Managed remote deployment was also covered. Attendees were encouraged to prioritize update capabilities early in product design.
More Related Content
What's hot (20)
A 64-Bit RISC Processor Design and Implementation Using VHDL
A 64-Bit RISC Processor Design and Implementation Using VHDL Andrew Yoila This document presents the design and implementation of a 64-bit RISC processor using VHDL, emphasizing its architecture, instruction set, and operational characteristics. The report highlights the significance of RISC in enhancing processing speed and efficiency compared to CISC architectures, and details the functionality of the arithmetic logic unit (ALU) integrated into the design. Future work aims to expand the instruction set and improve pipeline efficiency.
Android 10
Android 10kpraveen_slideshare Android 10 includes several new features and improvements including enhanced privacy and security features, expanded digital wellbeing tools, better support for new hardware, and under-the-hood optimizations. Key changes involve moving the root file system to the system image partition, adding new kernel utilities to help with ABI compatibility, and introducing services like SystemSuspend HIDL to leverage benefits of the Android HIDL infrastructure.
Fuchsia
Fuchsiakasyamgurulakshmi Fuchsia OS is a new operating system being developed by Google as a replacement for Android and Chrome OS. It uses a microkernel called Zircon instead of the Linux kernel. Fuchsia is designed to work across all device types from phones to PCs using a single codebase. The goal is to improve cross-device compatibility and app development. It uses programming languages like Rust and Dart along with the Flutter framework.
Embedded linux
Embedded linuxWingston Embedded Linux provides a standardized operating system solution for embedded systems through the Linux kernel. The Linux kernel abstracts the underlying hardware and provides drivers to interface with hardware peripherals. This allows application developers to focus on their code without needing to manage low-level hardware interactions. A bootloader initializes the hardware and loads the Linux kernel from memory. The kernel then loads and runs programs stored in the filesystem. Cross-compilers allow the same source code to target different processor architectures. Libraries and drivers help share code and resources across applications and hardware.
Linux
Linuxsalamassh Linux is an operating system created by Linus Torvalds that enables applications and users to access computer devices. It is similar to Windows and OS X but is unique in being modular and flexible, allowing developers to use many languages. Linux has become very popular, powering major websites and representing a $25 billion ecosystem in 2008 as it is installed on computers and relied on by companies like Google, Twitter, and YouTube.
Embedded Android : System Development - Part IV (Android System Services)
Embedded Android : System Development - Part IV (Android System Services)Emertxe Information Technologies Pvt Ltd The document provides an overview of Android system services, detailing their types—started, bound, and scheduled—and how they operate, including inter-process communication (IPC) methods like AIDL and Binder. It explains the process of adding a custom service in Android, including writing the service and interface, registering the service, and configuring security policies. Finally, it highlights the importance of properly compiling and testing these services within the Android development framework.
Getting Started with Buildroot
Getting Started with BuildrootTrevor Woerner The document provides an extensive overview of Buildroot, an embedded Linux build system, detailing its capabilities, configuration options, and the process for building custom embedded Linux systems. Key topics include cross-compilation, package management, and the customization of filesystem images through pre-defined configurations and package infrastructures. It highlights the importance of using established tools and methodologies to simplify the development of embedded Linux software.
Flutter Introduction and Architecture
Flutter Introduction and ArchitectureJenish MS Flutter is an open-source UI toolkit developed by Google for building high-performance applications across multiple platforms from a single codebase using the Dart programming language. It offers customizable widgets, a rich architecture that includes a platform-specific embedder, engine, and framework components, and supports both stateful and stateless widgets for efficient UI development. Additionally, Flutter's hot reload feature and a large developer community enhance its appeal for rapid and flexible app development.
Linux
Linuxdwarfyray Linux is a free and open-source operating system based on the Linux kernel, which was created by Linus Torvalds in 1991. It is widely used on servers, desktops, and embedded devices. Major Linux distributions combine the Linux kernel with tools and libraries from the GNU operating system and various application software into a format that is easy to install and use. Linux has gained popularity for its security, reliability, and low cost as well as avoiding vendor lock-in.
Managed disk-Azure Storage Evolution
Managed disk-Azure Storage EvolutionSiraj Mohammad The document outlines features of Azure Managed Disks, including their categorization (standard and premium), storage account requirements, and advantages such as high availability, direct management by Azure, and scalability without account limitations. It highlights the top-level management of resources like snapshots and images, along with IOPS metrics for different disk sizes. Additionally, it provides guidance on creating encrypted managed disks using Azure CLI and integrating security features like BitLocker and Azure Key Vault.
Linux command ppt
Linux command pptkalyanineve Here are the key differences between relative and absolute paths in Linux:
- Relative paths specify a location relative to the current working directory, while absolute paths specify a location from the root directory.
- Relative paths start from the current directory, denoted by a period (.). Absolute paths always start from the root directory, denoted by a forward slash (/).
- Relative paths are dependent on the current working directory and may change if the working directory changes. Absolute paths will always refer to the same location regardless of current working directory.
- Examples:
- Relative: ./file.txt (current directory)
- Absolute: /home/user/file.txt (from root directory)
So in summary, relative paths
Embedded Linux from Scratch to Yocto
Embedded Linux from Scratch to YoctoSherif Mousa Embedded Linux is the use of the Linux kernel and operating system components adapted for embedded systems with limited resources. Building an embedded Linux system involves compiling the cross-compiler toolchain, bootloader, Linux kernel, root filesystem, busybox commands, and startup scripts. This can be done from scratch or using automated build tools like Buildroot or Yocto Project, which simplify and standardize the process of building a custom embedded Linux image.
Unix++: Plan 9 from Bell Labs
Unix++: Plan 9 from Bell LabsAnant Narayanan Plan 9 from Bell Labs is an advanced distributed operating system, considered a true successor to Unix, aiming to address limitations of modern Unix-like systems. It introduces concepts like 'everything is a file' and a uniform interface for resources, differing significantly from traditional Unix systems. The document discusses various features and tools within Plan 9 and encourages developers to contribute to its community.
Yocto Project introduction
Yocto Project introductionYi-Hsiu Hsu The document provides an introduction to the Yocto Project, including what it is, its main components, and workflow. It describes the Yocto Project as being comprised of Poky (the build system), tools, and upstreams. Poky contains BitBake (the build engine) and metadata (task configurations and definitions). It outlines the main components, including sub-projects, and compares the Yocto Project to OpenEmbedded. Finally, it summarizes the Yocto Project workflow, which involves configuring the build using recipes and layers then building packages, images, and cross-development toolchains.
presentation on Docker
presentation on DockerVirendra Ruhela Docker is an open platform for developing, shipping, and running distributed applications. It allows applications to be shipped and run in lightweight containers that can run on any Linux server. Docker uses operating-system-level virtualization and cgroups isolation to deliver lightweight containers quickly. Key features of Docker include portability, lightweight containers that share resources and isolate processes, and automated workflows.
Zephyr-Overview-20230124.pdf
Zephyr-Overview-20230124.pdfibramax - The document describes the Zephyr real-time operating system which is open source, has a vibrant community, and is built with safety and security in mind. It supports multiple architectures and hardware boards and has vendor-neutral governance.
- Key features include being highly configurable, modular, and product development ready using long-term supported releases that include security updates. It provides a range of OS services and supports over 100 sensors out of the box.
- The project focuses on safety and has established committees to improve security practices and work towards safety certification for applications requiring functional safety standards like IEC 61508.
Secure Embedded Systems
Secure Embedded SystemsInformatik-Forum Stuttgart e.V. The document discusses secure embedded systems as a requirement for cyber physical systems and the internet of things. It begins by providing examples of attacks on modern embedded systems like cars, industrial control systems, smart grids, and medical devices. It then discusses trends increasing security risks for embedded systems like network connectivity and standardization. Finally, it outlines requirements for future secure embedded systems and describes techniques like hardware security modules, secure elements, physical unclonable functions, and trusted operating systems to provide security in embedded systems going forward.
Kali presentation
Kali presentationZain Ul abadin Kali Linux is a specialized operating system designed for penetration testing and security auditing, featuring over 300 tools and developed by Offensive Security. Key tools include Metasploit for backdooring, SQLMap for database exploitation, and Aircrack for wireless network attacks. In contrast to Ubuntu, which serves general desktop purposes, Kali is tailored for professionals in cybersecurity and digital forensics.
Linux Tutorial For Beginners | Linux Administration Tutorial | Linux Commands...
Linux Tutorial For Beginners | Linux Administration Tutorial | Linux Commands...Edureka! This document outlines a comprehensive Linux administration training program, covering topics such as the history of Linux, various distributions, command line operations, networking, and user management. Key Linux commands and their functionalities for file manipulation, process management, and permissions are detailed alongside practical exercises. The training also includes working with Linux repositories, environment variables, and regular expressions.
Introduction to Linux
Introduction to Linux Harish R This document provides an overview of a presentation on Linux programming and administration. It covers the history of Unix and Linux, files and directories in Linux, Linux installation, basic Linux commands, user and group administration, and LILO (Linux Loader). The document introduces key topics like Unix flavors, Linux distributions, partitioning and formatting disks for Linux installation, the file system hierarchy standard, and access permissions in Linux.
Embedded Android : System Development - Part IV (Android System Services)
Embedded Android : System Development - Part IV (Android System Services)Emertxe Information Technologies Pvt Ltd
Similar to Mender; the open-source software update solution (20)
Mender: The open-source software update solution
Mender: The open-source software update solutionMender.io Drew Moseley is an embedded solutions architect at Mender.io, which provides an open source over-the-air update manager for embedded Linux devices. He discussed challenges with traditional update methods, requirements for secure and robust OTA updates, and how Mender addresses these challenges through its dual A/B partitioning, rollback capability, and support for full system and application updates across many embedded environments and device types. He then demonstrated Mender and discussed its architecture, community, and commercial support offerings.
Software Updates for Connected Devices - OSCON 2018
Software Updates for Connected Devices - OSCON 2018Mender.io Drew Moseley presented on software update strategies for embedded devices. He discussed the need for remote updates to address bugs and add new features. Key considerations for embedded updates include robustness, security, integration with existing environments, ease of use, bandwidth efficiency, and minimizing downtime. Common update strategies like in-place, asymmetric maintenance mode, and symmetric dual rootfs were compared based on these criteria. Managed remote deployment was also covered. Attendees were encouraged to prioritize update capabilities early in product design.
Meetup Openshift Geneva 03/10
Meetup Openshift Geneva 03/10MagaliDavidCruz Operators allow for the automated deployment, management, and operation of applications on Kubernetes clusters. They help address issues like configuring applications, automated upgrades, and monitoring throughout the application lifecycle. The demo showed how Operators can deploy Kafka on OpenShift with minimal manual configuration compared to traditional Kubernetes manifests. Rook provides storage services like Ceph on OpenShift to enable stateful applications through features like block storage, object storage, and a distributed file system. It offers high scalability and availability with support from Red Hat.
On-Demand Image Resizing Extended - External Meet-up
On-Demand Image Resizing Extended - External Meet-upJonathan Lee The document details the transition of on-demand image resizing from a monolithic architecture to a containerized microservice approach at CNET. It covers aspects such as Docker overviews, testing, deployment strategies, upgrades, monitoring, and maintenance, while highlighting the technical benefits of using containers and the Thumbor image resizer tool. Additionally, it presents statistics regarding system performance and future development plans along with contributions to open-source projects.
Why the yocto project for my io t project elc_edinburgh_2018
Why the yocto project for my io t project elc_edinburgh_2018Mender.io This document summarizes a presentation about using the Yocto Project for IoT projects. It discusses the challenges of embedded Linux development and introduces the Yocto Project as a build system that can address these challenges. It provides an overview of the Yocto Project workflow and features like its layer-based structure and SDK support. Finally, it outlines benefits of using the Yocto Project for IoT projects, including support for common IoT protocols and the ability to customize software for specific hardware.
Software update for embedded systems
Software update for embedded systemsSZ Lin The document discusses software updates for embedded systems using open source software, highlighting the importance of compliance with copyright and patent laws. It outlines key processes, tools, and policies for effective open source management, as well as the challenges associated with firmware updates in industrial applications. Additionally, it compares various update methods and frameworks, emphasizing the significance of fail-safe and rollback features in harsh environments.
Software update for IoT: the current state of play
Software update for IoT: the current state of playChris Simmonds The document discusses the challenges and solutions related to software updates for Internet of Things (IoT) devices. It emphasizes the need for secure, robust, and atomic update mechanisms to address vulnerabilities and improve device performance. Various strategies and existing tools, including OTA updates and update agents like swupdate and mender.io, are outlined to facilitate efficient device management and updates.
TDC2017 - Embedded Linux - Deploy Software Update for Linux Devices
TDC2017 - Embedded Linux - Deploy Software Update for Linux DevicesCaio Pereira The document discusses the importance of over-the-air (OTA) software updates for Linux devices, highlighting the Mender project as a secure, end-to-end solution for managing these updates. Mender features include signature management, automated rollback support, and support for dual A/B root filesystems, which enhance security and robustness while reducing downtime. Future developments aim to introduce delta-based updates and proxy deployments to further improve update efficiency and usability.
Software update for IoT Embedded World 2017
Software update for IoT Embedded World 2017Chris Simmonds The document discusses software update strategies for Internet of Things (IoT) devices, highlighting the importance of secure, robust, and atomic update processes. It covers various update mechanisms, including over-the-air updates and atomic differential updates, along with challenges and examples of update systems. The conclusion emphasizes the need for a stateless root filesystem and the evolving landscape of IoT software management.
Bare-metal, Docker Containers, and Virtualization: The Growing Choices for Cl...
Bare-metal, Docker Containers, and Virtualization: The Growing Choices for Cl...Odinot Stanislas The document discusses the evolution and advantages of cloud application deployment through bare-metal, virtualization, and containerization, specifically highlighting Docker as a management tool for containers. It outlines key pros and cons of both virtualization and container technologies, emphasizing the rapid lifecycle and performance benefits of containers but also acknowledging their security vulnerabilities. Additionally, the document introduces Intel's contributions towards enhancing container capabilities, suggesting a future coexistence of these technologies in IT environments.
Docker Roadshow 2016
Docker Roadshow 2016Docker, Inc. The document discusses the transformative impact of Docker on modern application development and enterprise IT, highlighting its role in enabling containerization, microservices, and hybrid cloud initiatives. It presents data from various surveys indicating that Docker significantly enhances development speed, reduces costs, and improves operational efficiency across deployments. Additionally, it emphasizes Docker's integrated security, control features, and the business value of its subscription services for organizations looking to modernize their applications.
Multi-site Architecture Considerations
Multi-site Architecture ConsiderationsPlatform CF The document discusses considerations for running CloudFoundry across multiple sites. It aims to improve redundancy of applications and CloudFoundry itself, and control location of apps and services. Key considerations include supporting any number of sites, tolerating outages of sites through dedicated deployments per site, and accessing all sites from a single point of entry using cross-site management and traffic distribution. Cross-regional management would also require shared cross-regional knowledge and data.
Twelve-Factor App: Software Application Architecture
Twelve-Factor App: Software Application ArchitectureSigfred Balatan Jr. The twelve-factor app methodology is a set of best practices for building scalable, maintainable, and portable software applications. It emphasizes aspects such as strict separation of code and configuration, dependency declaration, stateless processes, and treating logs as event streams. By adhering to these principles, developers can create cloud-native applications that are easy to deploy and manage across different environments.
The ultimate guide to software updates on embedded linux devices
The ultimate guide to software updates on embedded linux devicesMender.io The document provides a comprehensive overview of software update techniques for embedded Linux devices, detailing various methods including over-the-air updates and their importance in maintaining device functionality and security. It discusses common areas of use for embedded Linux, challenges such as unreliable networks, and existing solutions like Mender, swupdate, and rauc, illustrating their features and benefits. The emphasis is on utilizing open source platforms to reduce costs and enhance software update processes in the Internet of Things (IoT) ecosystem.
Software Update Mechanisms: Selecting the Best Solutin for Your Embedded Linu...
Software Update Mechanisms: Selecting the Best Solutin for Your Embedded Linu...ICS The document discusses various strategies and frameworks for managing software updates in embedded Linux devices, focusing on A/B updates, delta updates, and container-based solutions. It highlights open-source tools like Mender and RAUC, as well as considerations such as storage space, update security, and rollback capabilities. Additionally, the document includes a case study demonstrating the implementation of a secure update system for a medical instrument using Azure IoT and CAAM for encryption.
software Documentation Certificate in department of computer
software Documentation Certificate in department of computershriyanshrauthan833 The document presents a thesis on a stock maintenance system developed using Next.js 14, aimed at improving inventory management for retail sales. It outlines the objectives, methodologies, software and hardware requirements, and the benefits of implementing such a system, which include enhanced efficiency and decision-making capabilities. The conclusion emphasizes the importance of data-driven analytics and the future scope for integrating advanced technologies to maintain competitiveness in the retail industry.
Containers: DevOp Enablers of Technical Solutions
Containers: DevOp Enablers of Technical SolutionsJules Pierre-Louis The document discusses containers as tools for DevOps that enable better security and management of applications, promoting a microservice architecture for flexible deployments. It outlines fundamental knowledge for managing Windows server containers using Docker on Windows 10, including installation and creation processes. Key concepts covered include Docker's integration, the advantages of containers, and the differences between traditional and modern DevOps practices.
What's New in Docker - February 2017
What's New in Docker - February 2017Patrick Chanezon This document provides an overview of Container as a Service (CaaS) with Docker. It discusses key concepts like Docker containers, images, and orchestration tools. It also covers DevOps practices like continuous delivery that are enabled by Docker. Specific topics covered include Docker networking, volumes, and orchestration with Docker Swarm and compose files. Examples are provided of building and deploying Java applications with Docker, including Spring Boot apps, Java EE apps, and using Docker for builds. Security features of Docker like content trust and scanning are summarized. The document concludes by discussing Docker use cases across different industries and how Docker enables critical transformations around cloud, DevOps, and application modernization.
Webinar by ZNetLive & Plesk- Winning the Game for WebOps and DevOps
Webinar by ZNetLive & Plesk- Winning the Game for WebOps and DevOps ZNetLive The document explores the growth opportunities within the web operations (WebOps) and development operations (DevOps) markets, highlighting the challenges developers face in maintaining production environments. It emphasizes the impact of docker containers and tools like Plesk in simplifying server administration and enhancing collaboration through Git support. Additionally, it outlines various features and functionalities offered by Plesk to streamline deployments and environment management for developers.
Open source Android 10 on Orange Pi: Meth or Reality?
Open source Android 10 on Orange Pi: Meth or Reality?GlobalLogic Ukraine This document provides an overview of efforts to port Android 10 to inexpensive single board computers like the Orange Pi using only open source components. It discusses the requirements to use the latest Android version, a cheap board, only open source projects, and to have a working solution out of the box. The document outlines the project structure, including mainline kernel with patches, Mesa for graphics, and upstream HWComposer and audio HAL projects. It provides timeline details for graphics and video driver mainlining. Supported boards currently include Orange Pi PC, Plus2e and Raspberry Pi 4, with plans to expand support. Building instructions are provided.
Ad
More from Mender.io (16)
IoT: Contrasting Yocto/Buildroot to binary OSes
IoT: Contrasting Yocto/Buildroot to binary OSesMender.io Drew Moseley gave a presentation comparing the workflows of using binary operating systems versus build systems like Yocto Project and Buildroot for embedded and IoT development. He outlined the steps in a typical development workflow and discussed the advantages and disadvantages of each approach. He also touched on security best practices, the potential uses of containers in embedded/IoT, and concluded with recommendations to define applications early, use a reproducible build system, consider OTA updates, monitor containers, and contact Mender for additional information and resources.
A million ways to provision embedded linux devices
A million ways to provision embedded linux devicesMender.io Drew Moseley presented on the many ways to provision embedded Linux devices. There are over a million ways due to variations in boards, manufacturers, bootloaders, storage, and more. He discussed common provisioning models including SD cards, eMMC, SPI flash, raw NAND, and Android fastboot. Tools like Yocto, U-Boot, and Mender can help manage the process, while considerations like manufacturing, development workflows, and product development also impact provisioning.
Embedded linux build systems
Embedded linux build systems Mender.io The document provides an overview of embedded Linux build systems and distros aimed at assisting new embedded Linux developers. It discusses challenges in embedded Linux development, defines what a build system is, and presents an analysis of popular options, including Yocto Project, Buildroot, and OpenWRT, highlighting their pros and cons. The session emphasizes the importance of customization, reproducibility, and developer collaboration in embedded systems development.
Integrate IoT cloud analytics and over the-air (ota) updates with google and ...
Integrate IoT cloud analytics and over the-air (ota) updates with google and ...Mender.io The document discusses Mirza Krak's integration of IoT cloud analytics and over-the-air updates with mender.io and Google Cloud IoT Core. It highlights the importance of secure and efficient device management, authentication, and software updates for IoT devices in challenging environments. The document also provides an overview of mender.io's capabilities, the Yocto project for building custom Linux distributions, and the complexities of device authentication in IoT systems.
Configuring wifi in open embedded builds
Configuring wifi in open embedded buildsMender.io The document discusses various options for configuring WiFi credentials in embedded Linux devices using OpenEmbedded build system. It provides examples of configuring WiFi credentials at runtime using wpa_supplicant with sysvinit, systemd-networkd and NetworkManager. It also shows examples of configuring credentials at build time with wpa_supplicant, connman and NetworkManager. Other topics discussed include test setup used, build prerequisites and other related considerations like security, drivers and advanced WiFi topics.
IoT Prototyping using BBB and Debian
IoT Prototyping using BBB and DebianMender.io The document discusses an overview of using the Beaglebone Black and Debian for prototyping IoT applications. It covers setting up a basic weather station demo using the Beaglebone Black, Python, MQTT and a public broker. Potential next steps discussed include using a private broker, adding device and system management, and automating offline image generation. Production considerations mentioned are developer workflows, first-boot actions, and injecting device-specific data during manufacturing.
Strategies for developing and deploying your embedded applications and images
Strategies for developing and deploying your embedded applications and imagesMender.io The document outlines strategies for developing and deploying embedded applications, focusing on workflows, development tools, and package management in embedded Linux environments. It discusses tools such as Yocto, OTA updaters, and cross-compilation techniques, as well as the importance of configuration management and network booting. Additionally, it emphasizes the use of package managers for efficient software management during the development process.
IoT Development from Prototype to Production
IoT Development from Prototype to ProductionMender.io Drew Moseley presented on considerations for IOT development from prototype to production. He defined IOT and common markets, and discussed selecting hardware, system software, and design factors. Moseley emphasized secure development practices and the importance of over-the-air updates to address vulnerabilities. He reviewed common IOT connectivity options and system software choices like Linux distributions, Yocto Project, Buildroot and OpenWRT. Moseley took questions from attendees on IOT development best practices.
Linux IOT Botnet Wars and the Lack of Basic Security Hardening - OSCON 2018
Linux IOT Botnet Wars and the Lack of Basic Security Hardening - OSCON 2018Mender.io Drew Moseley presented on Linux IoT botnets and the lack of security hardening. He discussed three major botnets - Mirai, Hajime, and BrickerBot - and how they exploited common security problems like default credentials and unpatched vulnerabilities. Moseley emphasized that developers can learn from past mistakes by reviewing vulnerabilities and implementing secure designs to avoid compromising products. Basic security measures like unique passwords, updates, and least privilege access could significantly increase the costs for attackers while lowering risks for IoT device manufacturers and users.
Embedded Linux Build Systems - Texas Linux Fest 2018
Embedded Linux Build Systems - Texas Linux Fest 2018Mender.io This document summarizes and compares several popular build systems and distributions for embedded Linux development: Yocto Project, Buildroot, OpenWRT, and desktop distributions. It provides overviews of each along with pros and cons. The key takeaways are that Yocto Project is best for commercial use with multiple configurations due to its modularity and hardware vendor support, while Buildroot and desktop distributions are better for beginners and hobbyists or single configuration use cases due to their faster build times and easier setup. OpenWRT is suited for replacement router/networking device firmware where package-based updates are needed.
Iot development from prototype to production
Iot development from prototype to productionMender.io The document is an overview of IoT development, covering definitions, application areas, connectivity options, hardware selection, system software, and security considerations. It highlights key aspects such as the importance of over-the-air updates for maintaining device security and functionality, and provides insights into various technologies and frameworks in the IoT space. Drew Moseley, a technical solutions architect with over a decade of experience, presents the material as part of his expertise at Mender.io.
Linux IoT Botnet Wars - ESC Boston 2018
Linux IoT Botnet Wars - ESC Boston 2018Mender.io Drew Moseley gave a presentation on Linux IoT botnets and lack of security hardening. He discussed three major botnets - Mirai in 2016, Hajime in 2016, and BrickerBot in 2017. All exploited default credentials on IoT devices to spread. Mirai aimed to launch DDoS attacks while Hajime and BrickerBot had different goals. Moseley argued developers must learn from past vulnerabilities to improve security and avoid compromises through careful design considering threats like these botnets.
Securing the Connected Car - SCaLE 2018
Securing the Connected Car - SCaLE 2018Mender.io Drew Moseley discussed opportunities and challenges with software-defined connected cars. The connected car brings new revenue opportunities from services but also a larger attack surface. An attack on Jeep Cherokees in 2015 demonstrated safety risks when vehicles cannot be updated remotely. Securing software-defined cars requires over-the-air updates to fix issues, but patching is currently done too late. Moseley's company Mender provides an open source over-the-air updater to help automakers securely manage remote software updates.
Mender.io | Securing the Connected Car
Mender.io | Securing the Connected CarMender.io The document discusses the security challenges and opportunities associated with the software-defined car, emphasizing the importance of over-the-air (OTA) updates for addressing vulnerabilities. It highlights examples of security breaches, such as the Fiat Chrysler hack, to illustrate the risks and potential cost savings from effective patching strategies. The document advocates for the use of open-source software to reduce costs and accelerate time-to-market while ensuring adherence to security protocols.
Linux IoT Botnet Wars and the lack of basic security hardening
Linux IoT Botnet Wars and the lack of basic security hardeningMender.io The document outlines the evolution and impact of several IoT botnets, including Mirai, Hajime, and BrickerBot, focusing on their methods of infection and exploitation of default credentials in embedded Linux devices. It emphasizes the necessity for improved security measures and accountability for device manufacturers to mitigate vulnerabilities that lead to widespread attacks. Key recommendations include implementing over-the-air updates, network segmentation, and employing the principle of least privilege to enhance security in IoT devices.
Mender.io | Develop embedded applications faster | Comparing C and Golang
Mender.io | Develop embedded applications faster | Comparing C and GolangMender.io The document compares C and Go programming languages, emphasizing that while Go is not a replacement for C, it offers productivity benefits and excels in developing networking code. It outlines the advantages of using Go, such as faster application development, lower learning curve due to syntactical similarities with C, and better memory management features. The author's experiences with Go highlight its ease of integration with Yocto and capabilities for embedded systems, despite some challenges with third-party library support and cross-compilation.
Ad
Recently uploaded (20)
Streamlining CI/CD with FME Flow: A Practical Guide
Streamlining CI/CD with FME Flow: A Practical GuideSafe Software Join us as we explore how to deploy a fault-tolerant FME Flow installation using FME Flow’s IaC templates alongside Terraform, AWS, and GitHub in a CI/CD workflow. This session will also cover how to leverage FME’s CI/CD capabilities for FME Flow upgrades and FME object migration between different environments, ensuring seamless automation and scalability.
Canva Pro Crack Free Download 2025-FREE LATEST
Canva Pro Crack Free Download 2025-FREE LATESTgrete1122g 🌍📱👉COPY & PASTE LINK >> https://click4pc.com/after-verification-click-go-to-download-page/
Canva Pro PC Crack is a practical design app to create beautiful montages and compositions with a lot of resources on the platform.
Threat Modeling a Batch Job Framework - Teri Radichel - AWS re:Inforce 2025
Threat Modeling a Batch Job Framework - Teri Radichel - AWS re:Inforce 20252nd Sight Lab This presentation is similar to another presentation I gave earlier in the year at the AWS Community Security Day, except that I had less time to present and incorporated some AI slides into the presentation. In this presentation I explain what batch jobs are, how to use them, and that AI Agents are essentially batch jobs. All the same security controls that apply to batch jobs also apply to AI agents. In addition, we have more concerns with AI agents because AI is based on a statistical model. That means that depending on where and how AI is used we lose some of the reliability that we would get from a traditional batch job. That needs to be taken into consideration when selecting how and when to use AI Agents as batch jobs and whether we should use AI to trigger an Agent. As I mention on one side - I don't want you to predict what my bank statement should look like. I want it to be right! By looking at various data breaches we can determine how those attacks worked and whether the system we are building is susceptible to a similar attack or not.
Zoneranker’s Digital marketing solutions
Zoneranker’s Digital marketing solutionsreenashriee Zoneranker offers expert digital marketing services tailored for businesses in Theni. From SEO and PPC to social media and content marketing, we help you grow online. Partner with us to boost visibility, leads, and sales.
From Data Preparation to Inference: How Alluxio Speeds Up AI
From Data Preparation to Inference: How Alluxio Speeds Up AIAlluxio, Inc. Alluxio Webinar
June 17, 2025
For more Alluxio Events: https://www.alluxio.io/events/
Speaker:
Jingwen Ouyang (Sr. Product Manager @ Alluxio)
In this talk, Jingwen Ouyang, Senior Product Manager at Alluxio, will share how Alluxio make it easy to share and manage data from any storage to any compute engine in any environment with high performance and low cost for your model training, model inference, and model distribution workload.
HYBRIDIZATION OF ALKANES AND ALKENES ...
HYBRIDIZATION OF ALKANES AND ALKENES ...karishmaduhijod1 Hybridization happens when atomic orbitals mix to form a new atomic orbital.
A Guide to Telemedicine Software Development.pdf
A Guide to Telemedicine Software Development.pdfOlivero Bozzelli Learn how telemedicine software is built from the ground up—starting with idea validation, followed by tech selection, feature integration, and deployment.
Know more about this: https://www.yesitlabs.com/a-guide-to-telemedicine-software-development/
OpenChain Webinar - AboutCode - Practical Compliance in One Stack – Licensing...
OpenChain Webinar - AboutCode - Practical Compliance in One Stack – Licensing...Shane Coughlan OpenChain Webinar - AboutCode - Practical Compliance in One Stack – Licensing, Vulnerabilities, and More
Building Geospatial Data Warehouse for GIS by GIS with FME
Building Geospatial Data Warehouse for GIS by GIS with FMESafe Software Data warehouses are often considered the backbone of data-driven decision-making. However, traditional implementations can struggle to meet the iterative and dynamic demands of GIS operations, particularly for Iterative Cross-Division Data Integration (ICDI) processes. At WVDOT, we faced this challenge head-on by designing a Geospatial Data Warehouse (GDW) tailored to the needs of GIS. In this talk, we’ll share how WVDOT developed a metadata-driven, SESSI-based (Simplicity, Expandability, Spatiotemporality, Scalability, Inclusivity) GDW that transforms how we manage and leverage spatial data. Key highlights include: - Simplifying data management with a lean schema structure. - Supporting ad hoc source data variations using JSON for flexibility. - Scaling for performance with RDBMS partitioning and materialized views. - Empowering users with FME Flow-based self-service metadata tools.We’ll showcase real-world use cases, such as pavement condition data and LRS-based reporting, and discuss how this approach is elevating GIS as an integrative framework across divisions. Attendees will walk away with actionable insights on designing GIS-centric data systems that combine the best of GIS and data warehouse methodologies.
Zoho Creator Solution for EI by Elsner Technologies.docx
Zoho Creator Solution for EI by Elsner Technologies.docxElsner Technologies Pvt. Ltd. Working with Elsner’s Zoho Creator experts, Educational Initiatives implemented a custom asset management system that: Our Zoho Creator solutions have made real changes across the company, and each team has felt the difference.
arctitecture application system design os dsa
arctitecture application system design os dsaza241967 wow amazing see and enjoy for this the best pdf slideshow you could see random shit is what i do best
CodeCleaner: Mitigating Data Contamination for LLM Benchmarking
CodeCleaner: Mitigating Data Contamination for LLM Benchmarkingarabelatso The pdf-version of "CodeCleaner: Mitigating Data Contamination for LLM Benchmarking" presented in Internetware 2025.
Best Practice for LLM Serving in the Cloud
Best Practice for LLM Serving in the CloudAlluxio, Inc. Alluxio Webinar
June 17, 2025
For more Alluxio Events: https://www.alluxio.io/events/
Speaker:
Nilesh Agarwal (Co-founder & CTO @ Inferless)
Nilesh Agarwal, co-founder & CTO at Inferless, shares insights on accelerating LLM inference in the cloud using Alluxio, tackling key bottlenecks like slow model weight loading from S3 and lengthy container startup time. Inferless uses Alluxio as a three-tier cache system that dramatically cuts model load time by 10x.
Azure AI Foundry: The AI app and agent factory
Azure AI Foundry: The AI app and agent factoryMaxim Salnikov Discover how Azure AI Foundry is transforming the way organizations innovate and operate. This session explores the pivotal role of AI in reshaping business processes, enhancing employee experiences, and redefining customer engagement. Attendees will gain insights into the strategic value of AI investments, including the measurable returns and the growing momentum behind generative AI experimentation.
The talk introduces the emerging paradigm of agentic AI - intelligent agents that are revolutionizing how we build, manage, and interact with software. Through real-world examples, the session demonstrates how Azure AI Foundry empowers teams to design, customize, and scale AI applications and agents, unlocking new levels of efficiency and creativity across industries.
On-Device AI: Is It Time to Go All-In, or Do We Still Need the Cloud?
On-Device AI: Is It Time to Go All-In, or Do We Still Need the Cloud?Hassan Abid As mobile hardware becomes more powerful, the promise of running advanced AI directly on-device is closer than ever. With Google’s latest on-device model Gemini Nano, accessible through the new ML Kit GenAI APIs and AI Edge SDK, alongside the open-source Gemma-3n models, developers can now integrate lightweight, multimodal intelligence that works even without an internet connection. But does this mean we no longer need cloud-based AI? This session explores the practical trade-offs between on-device and cloud AI for mobile apps.
Sysinfo OST to PST Converter Infographic
Sysinfo OST to PST Converter InfographicSysInfo Tools The SysInfo OST to PST Converter is the most secure software to perform the OST to PST conversion. It converts OST files into various formats, including MBOX, EML, EMLX, HTML, and CSV, with 100% accuracy. Along with that, it imports OST files into different email clients like Office 365 and G Suite.
visit: https://www.sysinfotools.com/ost-to-pst-converter.php
Simplify Task, Team, and Project Management with Orangescrum Work
Simplify Task, Team, and Project Management with Orangescrum WorkOrangescrum Streamline project workflows, team collaboration, and time tracking with orangescrum work, your all-in-one tool for smarter and faster project execution.
Best MLM Compensation Plans for Network Marketing Success in 2025
Best MLM Compensation Plans for Network Marketing Success in 2025LETSCMS Pvt. Ltd.
Discover the top MLM compensation plans including Unilevel, Binary, Matrix, Board, and Australian Plans. Learn how to choose the best plan for your business growth with expert insights from MLM Trees. Explore hybrid models, payout strategies, and earning potential.
Learn more: https://www.mlmtrees.com/mlm-plans/
Mender; the open-source software update solution
- 1. Drew Moseley Embedded Solutions Architect Mender.io
- 2. 1. Challenges and motivations 2. Requirements a. Non-functional b. Installer strategies 3. Mender a. Demo and explanations b. Device integration c. Testing d. Community overview Session overview
- 3. About me Drew Moseley ○ 10 years in Embedded Linux/Yocto development. ○ Longer than that in general Embedded Software. ○ Project Lead and Solutions Architect. [email protected] https://twitter.com/drewmoseley https://www.linkedin.com/in/drewmoseley/ https://twitter.com/mender_io Mender.io ○ Over-the-air update manager for embedded Linux ○ Open source (Apache License, v2) ○ Dual A/B rootfs layout (client) ○ Remote deployment management (server) ○ Under active development
- 4. We are hiring! Backend Software Engineer Cloud Architect DevOps Engineer Full Stack Software Engineer Embedded/Client Software Engineer Senior QA Engineer
- 5. Motivating OTA capability Bricked Smart Locks1 Automobiles head units in reboot loop2 Botnets: ● Mirai: Peaked at 600,000 infections ○ DDoS of major sites in late 2016 ○ Intent: Profit ● BrickerBot: “author” claims 10,000,000 infections ○ Abandoned by author in November 2016 ○ Intent: Internet chemotherapy ● Newer ones becoming more sophisticated 1 https://www.extremetech.com/computing/254177-internet-things-smart-locks-bricked-bad-firmware-update 2 https://www.theverge.com/2016/6/7/11879860/lexus-navigation-broken-software-update-bug
- 6. Connected devices must be remotely updatable ● There will be bugs and vulnerabilities ○ 1-25 per 1000 lines of code* ● … and new features ● … after device is deployed to the field *Source: Steve McConnell, Code Complete Critical- and high-severity security bugs in Linux Source: Ars Technica
- 7. The embedded environment ● Remote ○ Expensive to reach physically ● Power ○ Battery ○ Unclean shutdown ● Hostile deployment environment ● Product lifetime ○ Some markets 5 - 10 years ● Network ○ Intermittent connectivity ○ Low bandwidth ○ Insecure
- 8. Requirements 1. Robust and secure a. Rollback b. Signed/trusted images c. Integrity/compatibility checks 2. Atomic updates 3. Support kernel, apps, libraries, DTBs 4. Integrates with existing environments a. Easy to get started 5. Bandwidth consumption 6. Downtime during update
- 9. Installer strategies 1. In-place 2. Maintenance mode 3. Dual A/B 4. Proxy Bootloader Kernel, initramfs User space Updater
- 10. Installer strategies 1. In-place 2. Maintenance mode 3. Dual A/B 4. Proxy Bootloader Kernel, initramfs User space Updater
- 11. Installer strategies 1. In-place 2. Maintenance mode 3. Dual A/B 4. Proxy Bootloader Kernel, initramfs A User space A Updater A User space B Kernel, initramfs B Updater B
- 12. 1. In-place 2. Maintenance mode 3. Dual A/B 4. Proxy Installer strategies Gateway Remote device (sensor, ECU, etc.) Updater
- 13. Why did Mender choose image-based updates ● Increased fleet robustness ● Greatly reduced testing matrix ● Ease of rollback ● Atomic updates ● Reproducible deployments
- 14. Challenges with package-based updates Managing individual packages quickly becomes a logistical nightmare ○ Testing of many combinations of installed packages ○ Installation order not strictly enforced. ○ Partially-installed packages can block installs of new fixed packages
- 15. Re-use open source tools for remote update management Most companies write their own homegrown updater from scratch (!) Existing free and open source tools can help you Save time and avoid stress (where you can) ○ Initial development ■ It looks so easy! Is it easy? ○ Ongoing maintenance ■ 5 years? 10? 20? ■ 1 product? 5? 10?
- 16. Generic embedded update workflow Detect update (secure channel) Download (secure channel) Integrity (e.g. checksum) Authenticate (e.g. signature) DecryptExtract Install Failure recovery (e.g. roll back) Compatibility check Sanity checks Post-install actions Pre-install actions Must-have Environment-specific (Re)Start* *E.g. reboot, restart service, start container
- 17. Mender Mender is an end-to-end open source software update manager for connected devices ● Written in Golang ● Licensed under Apache 2.0 ○ Sources available in github ● End-to-end open-source ○ Backend ○ Management front end ○ Client, tooling, QA ● https://docs.mender.io/
- 18. Atomic A/B image update TLS communication between client/server Update streamed directly to inactive partition Deployment management Cryptographic signing and verification of updates Customizable to device use cases Artifact tool for creation and management Mender
- 19. Bootloader Image A (active) U-boot Grub x86 (BIOS/UEFI) Grub ARM Image B (inactive) Data Root file-system Mender client Linux + DTB Automatic rollback with A/B image update
- 20. Automatic rollback with A/B image update Bootloader Image A (inactive) U-boot Grub x86 (BIOS/UEFI) Grub ARM Image B (active) Data Root file-system Mender client Linux + DTB
- 21. Mender Devices Users API Gateway TCP 443 DeviceAdm DeviceAuth UserAdm Inventory Deployments GUI Conductor Storage Proxy TCP 9000 Minio MongoDB ElasticSearch Redis Filesystem external clients stateless application layer persistent storage ● Microservices ● Only port 443 and 9000 ● RESTful API ○ Device API ○ Management API /api/management/v1/deployments /api/management/v1/admission /api/management/v1/devauth/ …. https://docs.mender.io/apis/overview Mender Server Architecture
- 22. Demo environment ○ Quick way to spin up a test server on laptop ○ Demo images ■ qemu ■ Raspberry Pi ■ Beaglebone Black ○ qemux86-64 device ○ Not secure! Production environment ○ Migration instructions on each release https://docs.mender.io/getting-started/create-a-test-environment https://docs.mender.io/administration/production-installation Mender Server
- 23. Partitions: ○ Boot (optional), Rootfs A, Rootfs B, Data Bootloader integration ○ Control boot process, A or B ○ U-boot, Grub (BIOS/UEFI) ○ U-boot auto-patch feature (fall-back to manual patching) Linux runtime integration ○ Supports eMMC/SD & UBI volumes ○ Mender client application Target OSes supported: ○ Yocto/OpenEmbedded (OOB) ○ Buildroot (somewhat) ○ OpenWRT (somewhat) ○ Debian/Ubuntu/Raspbian (using mender-convert utility) https://docs.mender.io/devices Mender | Device Integration
- 24. Coming soon Update modules - Spring 2019 ● Updates for microcontrollers, sensors, and other small devices ● In-place updates ● Configuration/calibration updates ● Containers ● Differential updates ● and more...
- 25. $ git clone -b 1.7.0 https://github.com/mendersoftware/integration.git $ cd integration $ ./up https://docs.mender.io/getting-started/create-a-test-environment Mender | setup demo environment
- 26. Demo time
- 27. Google Group / Mailing list ○ https://groups.google.com/a/lists.mender.io/forum/#!forum/mender Mender Hub/Forums/Tutorials/Integrations ○ https://hub.mender.io/ #mender @ freenode https://mender.io/developers/developer-portal Mender | Community & Resources