IoT Professional Services

Bringing IoT products to market involves varied requirements, ranging from embedded engineering, app development, backend hosting, software update infrastructure, maintenance and after-sales customer support. Deploying these capabilities at scale typically requires large upfront investments. The complexity involved in acquiring and orchestrating these requirements delays time-to-market. Illustration of common factors to be considered when bringing an IoT product to market

Our IoT Professional Services bring agility to enterprise IoT projects. Through our offerings, enterprises embrace a lean methodology for IoT product commercialization. Innovative companies can leverage our IoT portfolio to bring the first version of a product to market quickly, carry out product discovery and gather initial customer feedback, without committing more resources to scaling their product.

What do we offer?

Ubuntu Core	A container operating system built specifically for IoT and devices, optimized for high security, performance and reliability
Hardware certification and enablement	Pre-certified hardware available, or hardware certification and enablement packages for any board
IoT app embedding	Porting of up to 3 IoT applications to snaps
Hosted cloud infrastructure	Dedicated Snap Store for up to 1,000 devices
Over-the-air (OTA) update services	Monthly OTA software updates for one year
Technical support	Embedded technical support options
Consulting	3 days of professional consulting
Lead time	Standard delivery in two weeks, advanced hardware options have longer delivery time
Add-ons (optional)	Board bring-up (custom kernel with BSP integration) Full disk encryption Secure boot Kernel Livepatch Dedicated training workshops

The following advanced security, integrity and resilience options harden smart devices exposed to challenging environments. All are available as part of our IoT Professional Services packages.

Secure boot

Ensures the integrity of both the boot mechanism and the operating system environment it bootstraps.

• Guarantees a device can only run a certified workload

• Secures a device against both physical and remote attacks

• Verifies boot binaries, and kernel, against known keys held in the device firmware

Find out more about secure boot

Full disk encryption

Essential for devices with personal information in regulated industries:

• Hardware key management

• Optional key escrow

• Choice of ciphers and hardware acceleration

• Minimal performance impact

• TPM integration with the current CA (x86 only)

Find out more about full disk encryption (FDE)

FIPS certification

Allows your devices to meet Federal information processing requirements:

• FIPS-certified kernel and cryptographic libraries

• FIPS certification takes place every six months

• Fully compliant devices must restrict updates to certified versions (x86 only)

Kernel Livepatch

Reduce the number of reboots by live patching the running kernel against critical vulnerabilities. Requires specific certified kernel and x86 architecture.

• Maximize service availability

• Fixes are applied automatically, without restarting your system

• Reduces downtime, keeping systems both secure and compliant

High availability Kubernetes

With Canonical MicroK8s and Charmed Kubernetes, you gain a fully CNCF conformance cloud-native Kubernetes for device application operations, including clustering for high availability, service mesh support and automatic security updates.

Helpful resources

• Ubuntu IoT pricing

• Security certifications

• Canonical Livepatch

• Embedded Kubernetes for secure IoT Edge

• Ubuntu certified IoT hardware

• IoT and devices pricing

• Ubuntu Core