Timesys’ Threats Response Security Team (TRST) constantly monitors security issues that impact open source software being used by Timesys customers, eliminating the time you/your team would spend continuously monitoring Common Vulnerabilities and Exposures (CVEs) yourself.
 

Timesys’ Security Notification and Update Management Help You Stay Secure

Maintaining software security for your embedded Linux based device is vital but, the manual process of keeping up with the newly discovered vulnerabilities for your device software is often not feasible. Timesys’ automated Security Notification and Update Management Service helps reduce the time and costs associated with maintaining the software security of your embedded Linux based device — throughout the product lifecycle.

Security Monitoring and Notification

Timesys’ Threats Response Security Team (TRST) constantly monitors security issues that impact open source software being used by Timesys customers, eliminating the time you/your team would spend continuously monitoring Common Vulnerabilities and Exposures (CVEs) yourself. The TRST team:

  1. Discovers and identifies security issues relevant to the code in the Timesys source code repository by utilizing a Timesys-built CVE manager,
  2. Analyzes the state of the known vulnerability to determine if there is an available patch or update and
  3. Adds available security updates and patches to the code in the source code repository.

Timesys’ Security Notification enables you to track relevant security vulnerabilities for only the software components used in your particular configuration. With our on-demand notification, you/your team can:

  1. Initiate pull notification by running a command to check for CVEs (if using Timesys’ Yocto Project Café or Factory desktop development environment) or
  2. Get push notification by opting to store your workorder or manifest in the Timesys web development environment.

Try Timesys’ Security “pull” Notification for Yocto.
Follow the Quick Start in meta-timesys README.md.

Update Management Service

Timesys’ Update Management Service makes it easy for you/your team to apply security updates and patches into your software with confidence. You choose what gets updated, enabling you to remain in control.

To request more information about Timesys’ Security Monitoring and Update Management Service, contact us via our online form.
 
CONTACT US

Updates in the Factory

Recent Factory updates include:

apache-httpd

Version: 2.4.29
Category: Networking
License: Apache License 2.0

lame

Version: 3.100
Category: Multimedia
License: LGPLv2.1

OpenDDS

Version: 3.12
Category: Networking
License: LBSD

php

Version: 5.6.32
Category: Runtime
License: PHP License, version 3.01

python3

Version: 3.6.3
Category: Runtime
License: Python Software Foundation License v2

qt5

Version: 5.9.3
Category: Graphics
License: GPLv3/LGPLv3

Shadow

Version: 4.5
Category: System
License: BSD

wayland

Version: 1.14.0
Category: Graphics
License: MIT

Weston

Version: 3.0.0
Category: Graphics
License: MIT

Want to see all packages available in the Timesys repository?
 
VIEW PACKAGES

Related Resources: Security

Don’t miss a beat. Subscribe to our YouTube channel and our blog as we frequently add new content.

Watch Securing Qt based Linux Devices
Video: Securing Qt based Linux Devices

Do you know what it takes to ensure your Linux-based Qt platform is secure? In his presentation at Qt World Summit 2017, Maciej Halasz, vice president of technology at Timesys, gives an overview of both techniques and technologies for securing the software installed on your device as well as methods for keeping the device secure over its lifetime.

This previously recorded session takes a look at the impact security has on the embedded Linux product design process and provides recommendations for how you can “secure by design” and “stay secure.”
  WATCH NOW  

www.timesys.com

Read the Timesys BlogFollow Timesys on TwitterSubscribe to the Timesys YouTUbe channelemail Timesys

©2017 Timesys Corporation. 1905 Boulevard of the Allies, Pittsburgh, PA 15219

Timesys and the Timesys logo are registered trademarks of Timesys Corporation. CVE is a registered trademark of The MITRE Corporation. Linux is a registered trademark of Linus Torvalds in the United States and other countries. Qt is a trademark of The Qt Company in Finland and/or other countries worldwide. Yocto Project is a registered trademark of The Linux Foundation. All other company and product names mentioned are trademarks and/or registered trademarks of their respective owners.