Back in December, we laid out a roadmap for container orchestration. Then the dust settled from the Docker spinoff. What we now know is that Docker Apps is an inactive project. tldr; It's not a big deal for our customers and they are going to automagically get something better very soon:
Built on a vision that the latest software is the most secure, software updates are central to the FoundriesFactory security story. What happens, however, when software delivery is compromised? Is recovery complicated? Enter TUF key rotation!
Container orchestration in the embedded space lacks a good story and vision. This article explains where we currently are and what we have planned for the future.
Earlier this year, I found myself pushing the idea of an "anonymous mode" for the Aktualizr project which is the OTA agent running in the LMP. This turned into "aktualizr-lite" and has recently become the default OTA agent used by the LMP. This article explains what aktualizr-lite is and why we are using it.
The OTA blog series left users with a secured OTA Connect server. This article will describe how you can deploy an easy-to-use REST API to manage your devices.
Part three of this blog series showed how to deploy an OTA Connect service in Google Kubernetes Engine that had a few security holes. This article will describe how to secure it.
Continuing with the OTA blog series part one and part two, this article shows you how to deploy OTA Connect using the OTA Community Edition into Google's Kubernetes Engine (GKE). After completion of these instructions, you'll have an OTA Connect server available on the internet with a single QEMU device registered to it.