IoT Blog Written By Experts For Experts

The Foundries.io Blog

Fleet Management

How to wave

Photo of Daiane Angolini
Posted on Apr 6, 2021
by Daiane Angolini

In a production environment it is convenient to plan updates, and have control on when and which device(s) are updated. FoundriesFactory Waves is the feature for this. This post gathers a suggested sequence of commands to configure the first wave, and to guide for next waves.

Read more →

IoT Security

PKI Hacking for Fun and Profit

Photo of Andy Doan
Posted on Jul 27, 2021
by Andy Doan

Products often need to talk to third party services like AWS. Many times, the best bad option available is to copy some type of API key to the device's file system. As an embedded engineer, I work under a simple assumption: > ***Someone will eventually hack my device*** This article explores a way to provision devices without API keys.

Read more →

Audience

Categories

FoundriesFactory

Testing software at Foundries.io (part 1)

Photo of Milosz Wasilewski
Posted on Jan 5, 2022 by Milosz Wasilewski

Testing a customizable operating system is a tricky business. It is even harder when the features are determined by the hardware the OS is running on. Foundries.io delivers a product that needs to work on every platform we support.

Read more
FoundriesFactory

Working with containers on embedded devices

Photo of Andy Doan
Posted on Oct 19, 2021 by Andy Doan

This blog will be my most controversial yet; It covers two lightning rod issues - developer workflows and Little League Baseball. Hold on tight and you may learn some tricks for developing containers more efficiently.

Read more
FoundriesFactory

The Let's Encrypt Update

Photo of Andy Doan
Posted on Oct 5, 2021 by Andy Doan

On September 30, Let's Encrypt's original root certificate expired. All of our customer-facing HTTPS services have certificates signed by Let's Encrypt. As can be expected, there were a few hiccups along the way. If you are experiencing issues with services on Foundries.io please take a look below and see if this corrects your issue. If this does not resolve your issue do not hesitate to reach out to our support team either on Slack or via our support portal.

Read more
IoT Security

PKI Hacking for Fun and Profit - Part III

Photo of Andy Doan
Posted on Aug 12, 2021 by Andy Doan

This is the final article in my PKI Hacking for Fun and Profit series. This article follows up on part II and shows how you can use AWS's API Gateway to handle mTLS traffic from your factory devices with AWS Lambda. The result is a service that can scale as you need. In the PKI Hacking for Fun and Profit - Part II article, I created a simple example of an event logging agent that allows devices to use a customer owned mTLS server.

Read more
IoT Security

PKI Hacking for Fun and Profit - Part II

Photo of Andy Doan
Posted on Jul 30, 2021 by Andy Doan

Following the PKI Hacking for Fun and Profit article, I've created a simple example of an event logging agent that allows devices to use a customer owned mTLS server.

Read more
IoT Security

Xilinx Zynq® UltraScale+™ MPSoC Authenticated Boot

Posted on Jul 28, 2021 by Jorge Ramirez Ortiz

Lmp release v83 includes support for secure boot authentication on the Xilinx Zynq® UltraScale+™ MPSoC family of products.

Read more
IoT Security

PKI Hacking for Fun and Profit

Photo of Andy Doan
Posted on Jul 27, 2021 by Andy Doan

Products often need to talk to third party services like AWS. Many times, the best bad option available is to copy some type of API key to the device's file system. As an embedded engineer, I work under a simple assumption: > ***Someone will eventually hack my device*** This article explores a way to provision devices without API keys.

Read more
OTA Updates

Introducing Boot Software Updates

Photo of Igor Opaniuk
Posted on Jun 24, 2021 by Igor Opaniuk

In the v82 LmP release we delivered a new powerful feature - Boot Software Updates. It provides a mechanism for updating all boot artifacts, including SPL/TF-A/OP-TEE/U-Boot proper and custom M4 firmware images.

Read more
FoundriesFactory

FoundriesFactory using Yocto Project to easily handle copyleft compliance for GPLv2 and GPLv3

Photo of Daiane Angolini
Posted on Jun 14, 2021 by Daiane Angolini

The Yocto Project provides a set of tools to help with Open Source Software compliance. The FoundriesFactory is configured to use some of them by default and provides a good starting point when working with license requirements. The focus here is to configure the Linux microPlatform (LmP) to avoid installing packages under the GPLv3 family license and to deploy the artifacts required by the GPLv2 family license. **This document focuses on some technical aspects of the Yocto Project build process and must not be considered legal advice. Always consult a lawyer.**

Read more
OTA Updates

OSTree Static Deltas

Photo of Andy Doan
Posted on May 3, 2021 by Andy Doan

Rolling out big OTA updates efficiently is something we are often asked about. This article will talk about a feature in OSTree called static deltas and how they make platform updates more efficient.

Read more

Keep up to date with Foundries.io