Secured Industrial Embedded Linux

While Linux “name space” provides a good foundation for embedded application isolation, popular containers mostly focus on Linux fragmentation, and none of the Docker, LXC, Snap or Flatpak focus on embedded systems constrains.

Everyone understands that installing a software component on millions of cars, on a submarine or in a train is very different from installing a new application on a desktop or a phone. Embedded containers target managed systems that, on one hand require less composability than phone or desktop, on the other hand require a stronger control on package qualification and resources usage.

This talk presents how to run a containerise AGL under heavy resource constrains. It exposes how containers permit to operate multiple flavors of a given toolkit and finally exposes how containers simplify configuration management, security model and SOTA.

Archived Publications

A propos

L’objectif technique d' consiste à assembler, en fonction des besoins attachés à des marchés verticaux spécifiques (Automobile, Télécoms, Médical, Nautisme, Domotique, Agriculture…), un ensemble de composants logiciels techniques provenant de sources variées pour en faire une distribution cohérente où tous les composants fonctionnent ensemble de manière harmonieuse.


Halles St Louis,
    rue Docteur Bodelio
56100 Lorient
02 57 62 02 47