Blog posts tagged
“Compliance”

20 posts

Stephanie Domas
7 May 2025

CRA compliance: Things IoT manufacturers can no longer do under the CRA (and what to do instead)

Article Compliance

In this blog, I’ll give you a thorough overview of common IoT manufacturer and PDE developer practices that need immediate attention, and how to change or improve these practices so that you can pass CRA compliance.

Stephanie Domas
7 May 2025

JC Verdié
30 April 2025

The long march towards delivering CRA compliance

Article Compliance

The EU Cyber Resilience Act is here, and in 2027 it will require manufacturers to meet a long list of security and support standards. Here’s our advice to all developers.

JC Verdié
30 April 2025

Stephanie Domas
6 February 2025

EU Cyber Resilience Act compliance: best practices for IoT manufacturers

Article Compliance

The EU Cyber Resilience Act has considerable repercussions for the IoT device manufacturers. In this blog, we explore these new regulatory requirements and give our blueprint for compliant, market-ready devices.

Stephanie Domas
6 February 2025

Stephanie Domas
6 February 2025

A CISO’s comprehensive breakdown of the EU’s Cyber Resilience Act (EU CRA)

Article Compliance

The CRA is coming, and you need to be prepared. Depending on the Class your product falls into, there could be additional assessment, security, documentation, patching, compliance and reporting requirements on you and your teams. Find out how your digital product or service is categorised, reexamine your cybersecurity...

Stephanie Domas
6 February 2025

Henry Coggill
4 February 2025

The role of FIPS 140-3 in the latest FedRAMP guidance

Article FIPS

Good news in the US federal compliance space. The latest FedRAMP policy relaxes past restrictions that prevented organizations from applying critical security updates.

Henry Coggill
4 February 2025

João Hellmeister
17 January 2025

A comprehensive guide to NIS2 Compliance: Part 2 – Understanding NIS2 requirements

Article Ubuntu

In my previous blog, we ran through what NIS2 is and who it applies to. In this second part of the series, I’ll break down the main requirements you’ll find in NIS2 and help translate them into actionable and practical measures you can take to achieve NIS2 compliance. Join me in this post and start understanding what...

João Hellmeister
17 January 2025

Edoardo Barbieri
2 December 2024

Industrial cybersecurity: the journey towards IEC 62443 compliance

Article IoT

Industrial cybersecurity is on every CISO’s mind as manufacturers strive to integrate their IT and OT operations to drive efficiency and productivity. However, with increased connectivity comes heightened risk. This means that securing devices, networks, and systems is a critical challenge. Canonical, the publisher of...

Edoardo Barbieri
2 December 2024

Lech Sandecki
23 October 2024

6 facts for CentOS users who are holding on

Article Cloud and server

Considering migrating to Ubuntu from other Linux platforms, such as CentOS? Find six useful facts to get started!

Lech Sandecki
23 October 2024

Henry Coggill
2 August 2024

How Canonical enables PCI-DSS compliance

Article Security

Anyone who deals with online payments will have heard of PCI-DSS. The Payment Card Industry Data Security Standard is a comprehensive security control framework that is designed to keep payment card data safe from hackers and misuse. Merchants who accept debit or credit card payments (and service providers who process...

Henry Coggill
2 August 2024

Lech Sandecki
26 October 2023

Running OpenSSL 1.1.1 after EOL? Stay secure with Ubuntu Pro.

Article Ubuntu

A few months ago, the OpenSSL Project announced the end of life of OpenSSL 1.1.1. It is used by thousands of software components included in Ubuntu 18.04 LTS and Ubuntu 20.04 LTS, with many organisations relying on version 1.1.1. Rest assured that the Ubuntu security team will continue to maintain important security...

Lech Sandecki
26 October 2023

Rajan Patel
30 August 2022

FIPS certified vs compliant: what’s safer?

Article Cloud and server

Minimise risk by treating the FIPS standard as a baseline, and going above and beyond the baseline to mitigate risk by applying security patches.

Rajan Patel
30 August 2022

Lech Sandecki
28 October 2021

Enhance the security of your open-source applications and share feedback

Article Ubuntu

Are you spending time on high-impact, high-value activities, or are you constantly derailed by maintenance, support, and deployment challenges? Does your organisation consume open-source software that needs security patching? Where do you get the security updates from, and how do you track what’s available? Are you...

Lech Sandecki
28 October 2021

Canonical
11 August 2021

FIPS 140-2 certification for Ubuntu 20.04 LTS!

Article Canonical announcements

Ubuntu, the world’s most popular operating system across private and public clouds has received the FIPS 140-2, Level 1 certification for its cryptographic modules in Ubuntu 20.04 LTS, including OpenSSL 1.1.1. This certification is built on Canonical’s track record in designing Ubuntu for high security and regulated...

Canonical
11 August 2021

Lech Sandecki
8 December 2020

Ubuntu 16.04 LTS upgrade vs extended security maintenance

Article Ceph

Weighing the options with an Ubuntu 16.04 upgrade Ubuntu 16.04 LTS Xenial Xerus is transitioning from its five-year standard security maintenance window in four months, leaving many asking the question: can I manage an Ubuntu 16.04 LTS upgrade by April 2021, or do I need more time to plan this migration? In the Less than

Lech Sandecki
8 December 2020

  1. Previous page
  2. 1
  3. 2
  4. Next page