Are product security updates part of your cybersecurity requirements?
Need to address security vulnerabilities reported by your customers?
Looking for a partner who can provide long term security updates for your Linux OS/BSP?
Regardless of your embedded Linux build, you have to maintain your OS and BSP to stay ahead of security threats
The outdated strategy of “freeze and release” — freezing a device’s software at product launch with no plan or process to update it in the field — puts devices at high risk of security compromise. Whether you use Yocto Project, Buildroot, or Timesys Factory build system, regular upgrades are needed to ensure device security, to apply bug fixes, and to support newer hardware and technologies.
Take advantage of our deep expertise to maintain your Linux OS and BSP for the full lifecycle of your device
For more than 20 years, Timesys has been the industry’s trusted partner for secure embedded software design and development. We provide device makers and system developers with tools and services to accelerate time to market of more secure products.
What Linux OS and BSP Maintenance Gets You:
Linux OS/BSP Maintenance subscription service provides long-term security updates and maintenance of your Linux OS/BSPs. It is available for Yocto Project, Buildroot and Timesys Factory build systems.
Embedded Linux Security Experts
Expertise You Can Trust
Timesys has decades of experience with embedded Linux.
- Our Linux experts utilize decades of experience and purpose-built tools to keep your device updated and secure
- We provide regular updates that include bug fixes, support for new end-of-life parts, and new package features
- Validated Linux OS / BSP on your hardware so there are no surprises
Half the Cost of Doing It Yourself
Results That Don’t Break Your Budget
Maintaining your OS and BSP to stay ahead of security threats is complex and time-consuming, and expensive if you do it yourself.
- Linux OS/BSP Maintenance service is less than ½ the cost of a junior engineer
- Free up your resources to work on next-gen products
Boost Compliance with a Continuous Security Feed
CVE Monitoring with Our Best-In-Class Tool, Vigiles
Vigiles provides vulnerability alerts, monitoring, and remediation with on-demand reports for easy documentation.
- Superior data accuracy: pulls only the data for CVEs that correspond to your SBOM
- Automated documentation of fixed vulnerabilities between releases to boost industry compliance
Seamless Workflow Integration
Collaborative Triage and Development for Releases
Work together to quickly identify the CVEs you want us to fix.
- Joint review and analysis to identify CVEs that pose the highest risk
- We take action against the largest threats by deploying patches
Meet Your Release Schedules
Update Cadence That Meets Your Product Security Policy
With Linux OS/BSP Maintenance, you’re in control of the update schedule.
- Choose the cadence and number of updates (1-4) you require each year
- Includes updates to Linux kernel, file system, and the bootloader
- One emergency release provided in case of a zero day vulnerability
READY TO GET STARTED WITH
LINUX OS/BSP MAINTENANCE?
Start the Conversation
Avoid frequent maintenance cycles, high staffing costs, and priority conflicts by signing up for Timesys’ Linux OS/BSP Maintenance service. Get long term security updates and maintenance for your embedded device for half the cost of a junior engineer.
How It Works
Set Up Baseline
Your custom board is set up in our Embedded Board Farm and your BSP code is added to a private Timesys Git repo.
Review Reports
We provide monthly vulnerability reports, and on a regular basis we jointly review them to determine what updates and patches you want us to apply.
Integrate Patches /
Updates /
Backports
We integrate security patches / package updates and backports for your BSP as per the quarterly review.
Validate Custom
Linux OS
After integrating patches / updates, we validate the BSP by comparing the driver tests against the baseline.
Deliver Updated
BSP and Reports
We deliver updated BSP and validation reports for comparison with the previous report.
What Takes Place Each Year
Optimize Your Work With A Common Software Platform Across Multiple Hardware Versions And Product Lines
What You Get
Linux OS/BSP Maintenance provides you with long-term security updates and maintenance for your embedded systems. With our subscription service, you can rest assured that your device is up to date and has the strongest security posture possible.
Kernel, Root Filesystem, Bootloader, and Linux OS Software Updates
Regular updates each year include kernel updates, root filesystem updates, bootloader updates, and Linux OS software updates to keep your security posture strong.
Vigiles Prime CVE Monitoring and Reporting
Our vulnerability monitoring and management tool, Vigiles Prime, sets you up for success with vulnerability alerts, filtering, and easy reporting, keeping you ahead of security threats and in compliance with industry standards.
Triage and Fixes
We provide a joint review and analysis of security vulnerabilities so we can take action and apply fixes to the most urgent threats to your device.
Testing Performed on Your Hardware
Your custom board is set up in our Embedded Board Farm and your BSP code is added to a private Timesys Git repo so that testing can be performed on your own hardware.
Release Cadence Based on Your Needs
We provide updates on your schedule, in line with your product security policy. Choose the number of updates you need per year, and we implement on your timeline.
Optional Critical Security Releases as Needed
Zero day vulnerabilities can happen at any time, and can be absolutely disastrous if quick action isn’t taken. With Linux OS/BSP Maintenance, our standard agreement includes one emergency release per year, with an option to purchase more if necessary to keep your device secure.
Complete Support for Each OS Update Release
Our Linux security experts work alongside you to ensure each update release is successful. Beyond regularly scheduled collaborative review and analysis, you can contact Timesys support as needed for assistance in your security journey.
Long-term Updates for the Full Lifecycle of Your Device
We provide security updates long after the community and system on a chip (SoC) or board vendor stops supporting it.
READY TO GET STARTED WITH
LINUX OS/BSP MAINTENANCE?
Start the Conversation
Avoid frequent maintenance cycles, high staffing costs, and priority conflicts by signing up for Timesys’ Linux OS/BSP Maintenance service. Get long term security updates and maintenance for your embedded device for half the cost of a junior engineer.
See the impact of Linux OS and BSP Maintenance in action
Demo
Schedule a Demo of Timesys Vulnerability Monitoring
Request a personalized demo to see how Vigiles CVE monitoring and management tool — included as part of the BSP Maintenance service — can keep you ahead of security threats.
Webinar
Full Life-Cycle Security Maintenance of Embedded Linux BSPs
Continually changing threat environments and third-party software updates mean that your BSP software can no longer remain static and “frozen.” Watch this webinar to learn the ins and outs of BSP maintenance to keep your device secure throughout its entire lifecycle.
Blog
The many challenges of Linux OS / BSP security maintenance
How to choose the right vulnerability management tool to bring your security maintenance cost down while improving the security posture of the device