AHXproject

Canonical announces general availability of Ubuntu on Qualcomm Dragonwing™ IQ-9075 platform

December 1, 2025 – Canonical, the publisher of Ubuntu, today announced the availability of certified images for the Qualcomm Dragonwing™ IQ-9075 platform. This high-performance industrial platform is now fully supported with optimized images for Ubuntu 24.04 LTS. The certified images are available for both Ubuntu Server and Desktop, equipping developers with a robust and securely designed software foundation necessary for next-generation industrial automation, robotics, and edge AI applications.

This launch builds on the general availability of Ubuntu for the QCS6490 and QCS5430 processors , with today's announcement being the latest instance of Canonical support for Qualcomm's Dragonwing™  processors.

Resilience and performance for edge AI 

The Qualcomm Dragonwing™ IQ-9075 is designed for the next generation of industrial automation systems, handling everything from real-time analytics to on-device Generative AI. Designed for extreme edge AI, IQ-9075 combines high-performance with physical resilience. The platform can deliver up to 100 TOPS of on-device AI compute in thermal junction temperatures ranging from -40℃ to +115℃. 

By certifying Ubuntu for the IQ-9075 platform, Canonical ensures that enterprises get a seamless out-of-the-box experience from development to production. Through Ubuntu Pro, Canonical's subscription for open source security, developers benefit from up to 15 years of long term support. Combined with Qualcomm's decade-long product lifecycle, developers on IQ-9075 benefit from stability on both the hardware and software level. 

Here is a more detailed rundown of the features you can expect on the Qualcomm Dragonwing™ IQ-9075: 

• 8 Kryo Gold Prime high-performance cores 
• Up to 16 concurrent cameras for multi-stream computer vision
• High throughput data processing for robotics and factory automation
• Access to the full ecosystem of Ubuntu packages

A partnership that empowers developers

"We are delighted to deepen our collaboration with Canonical by bringing certified Ubuntu support to the Qualcomm Dragonwing™ IQ-9075 processor," said Laxmi Rayapudi, VP of Product Management, Qualcomm Technologies, Inc. "The IQ-9075 is designed for the most compute-intensive industrial tasks. Providing certified Ubuntu images – optimized and supported by Canonical – gives our ODMs and customers an essential, trusted software layer to deliver security-focused, high-performance edge solutions to market faster."

"Ubuntu on Qualcomm Dragonwing™ IQ-9075 will accelerate the launch of AI-ready industrial devices at scale. This partnership will ensure high performance and robust security at both the hardware and software level."  said Olivier Philippe, VP of Devices Engineering at Canonical. "Manufacturers using Qualcomm's Dragonwing™ IQ-9075 platform will not only be ready for long term support and maintenance, but also benefit from the full power of open source AI software innovations optimized for the Dragonwing™ IQ-9075″.

Getting started

To access the latest certified Ubuntu images for the Qualcomm Dragonwing™ IQ-9075 platform, please visit our Qualcomm IoT download page . If you have any questions about the platform or would like information about our certification program, then contact us by filling out our dedicated form.

December 1, 2025 – Canonical, the publisher of Ubuntu, today announced the availability of certified images for the Qualcomm Dragonwing™ IQ-9075 platform. This high-performance industrial platform is now fully supported with optimized images for Ubuntu 24.04 LTS. The certified images are available for both Ubuntu Server and Desktop, equipping developers with a robust and securely [...]


Source: https://ubuntu.com//blog/canonical-qualcomm-dragonwing-iq9075 Dec 01, 2025, 08:00 PM

AMI and Canonical announce partnership

The collaboration makes it easy to boot directly into Ubuntu from AMI's UEFI firmware solutions

Nuremberg, Germany, November 24, 2025 – Today, Canonical, the publisher of Ubuntu, announced a partnership with AMI, a provider of Unified Extensible Firmware Interface (UEFI) solutions. The partnership will enable users of AMI's Aptio® V UEFI Firmware to netboot directly into Ubuntu by simply selecting Ubuntu Cloud Installation in the boot menu.

This new native boot functionality makes it easy and convenient to use Ubuntu, and eliminates the need for flashing images or using additional media or external devices. A simple Ethernet connection is enough to install and launch Ubuntu.



Alexander Lehmann (Sales Director – IoT, Canonical) and B. Parthiban (General Manager, Boot Firmware Group at AMI) are excited to provide users with the best out-of-the-box experience for Ubuntu.

"At AMI, we value partnerships that strengthen the ecosystem and deliver trusted solutions. Canonical's widely adopted, community-supported platform is recognized for its stability and reliability, making this collaboration a natural fit," commented B. Parthiban, General Manager, Boot Firmware Group at AMI. "Together, we're enabling secure, high-performance experiences for customers everywhere."

"Our collaboration with AMI furthers our commitment to deliver the best Ubuntu experience right out of the box. It's now even easier to install Ubuntu," said Alexander Lehmann, Sales Director – IoT, at Canonical. 

The collaboration between Canonical and AMI kicks off at SPS – the Smart Production Solutions summit  – in Nuremberg from November 25 to 27, 2025. 

To find out more about Ubuntu, visit Canonical's booth in hall 6, number 112  and AMI's booth in hall 6, number 223 .

* * *

About Canonical 

Canonical, the publisher of Ubuntu Pro, provides open source security, support and services. Our portfolio covers critical systems, from the smallest devices to the largest clouds, from the kernel to containers, from databases to AI. With customers that include top tech brands, emerging startups, governments and home users, Canonical delivers trusted open source for everyone. Learn more at https://canonical.com/   

About AMI 

AMI is Firmware Reimagined for modern computing. As a global leader in Dynamic Firmware for security, orchestration, and manageability solutions, AMI enables the world's compute platforms from on-premises to the cloud to the edge. AMI's industry-leading foundational technology and unwavering customer support have generated lasting partnerships and spurred innovation for some of the most prominent brands in the high-tech industry. AMI is a registered trademark of AMI US Holdings, Inc. Aptio is a registered trademark of AMI in the US and/or elsewhere.

Today, Canonical, the publisher of Ubuntu, announced a partnership with AMI, a provider of Unified Extensible Firmware Interface (UEFI) solutions, allowing users of AMI's Aptio® V UEFI Firmware to netboot directly into Ubuntu by simply selecting Ubuntu Cloud Installation in the boot menu.


Categories: Partner, Ubuntu
Source: https://ubuntu.com//blog/ubuntu-boot-in-uefi-announcement Nov 24, 2025, 11:41 AM

The $8.8 trillion advantage: how open source software reduces IT costs 

Open source software is known for its ability to lower IT costs. But in 2025, affordability is only part of the story. A new Linux Foundation report, The strategic evolution of open source , reveals that open source has evolved from a tactical cost-saving measure to a mission-critical infrastructure supporting enterprise-grade investments, and delivering stronger business outcomes as a result.

This transformation is supported by academic research estimating that, without open source, companies would pay roughly 3.5 times more  to build the software running their businesses – an $8.8 trillion increase.[1] 

Open source: from "free alternative" to core infrastructure

The 2025 World of Open Source Survey by the Linux Foundation reveals that open source is deeply embedded across enterprise technology stacks, making it a foundation for global IT operations.  In fact, over 55% of analyzed tech stacks used a Linux-based operating system; and similarly, around half of all analyzed cloud, container, and DevOps technologies have Linux at their core.

The survey illuminates the many great reasons businesses are choosing open source: improved productivity, reduced vendor lock-in, and, unsurprisingly, lower total cost of ownership (TCO). Nearly half of organizations (46%) report an increase in business value from open source compared to last year, with 83% considering it valuable for their future. According to the World of Open Source Survey, 58% of organizations reported lower software ownership costs, and 63% cited higher productivity as a direct benefit of adopting open source. In addition, 62% reported reduced vendor lock-in and 75% judged their software quality to be higher thanks to OSS. Overall, 56% said the benefits of OSS exceeded the costs.[3] A Gartner study echoes these findings, showing that cost control and application development flexibility remain the top drivers of open source adoption.[2] 

And it's not just about the costs: organizations that invest strategically in open source are 20% more likely to perceive competitive advantage, while 78% report workplace satisfaction and better talent attraction. Nearly 80% say open source makes their organization a better workplace, and 74% say it improves their ability to attract technical talent. 

One respondent put it this way: "Open source is not supplementary tooling but an ecosystem of core infrastructure dependencies." This captures the shift perfectly: cost savings may start the conversation, but reliability, flexibility, and long-term value now drive adoption.

Why open source reduces IT costs and keeps cutting them

The same characteristics that make open source adaptable also make it economical:

• No per-seat licensing: organizations avoid scaling costs tied to user counts or cores
• Modular adoption: businesses can deploy only what they need, minimizing waste
• Shared innovation: security fixes, feature improvements, and bug patches benefit from collective community investment
• Interoperability and exit freedom: avoiding proprietary lock-in reduces switching costs and enables infrastructure that fits business strategy rather than the vendor's roadmap

Systems based on open source tend to have lower maintenance overhead and longer life cycles, advantages that compound fast. That's why enterprises see real savings,not just from shifting license costs to labor, but through genuine efficiency gains across teams.

Here's a real-world case study of that in action: Greek telecom leader Nova leveraged Canonical's planning and open pricing to control its CAPEX and OPEX, benefiting from predictable costs and freedom from management software licensing fees. Support from Canonical paid for "real expertise that enriches our team, rather than paying for access."[3]

Open source is also the backbone of AI, making it easier to adopt this increasingly must-have technology into business operations. McKinsey research highlights how open source frameworks accelerate AI adoption, enable faster product development, and catalyze ecosystem innovation, amplifying the total value beyond mere cost savings.[4] In fact, the LF's survey found that AI is the technology that benefits the most from being open source, according to 38% of respondents, and research from the Microsoft AI cloud Partners team showed that Linux environments such as Ubuntu deploy 63% faster with up to 306% ROl over three years.[5]

Mission-critical workloads demand enterprise-ready support

The data is clear: open source software lowers IT costs, but cost benefits only reach their full potential when paired with enterprise-ready support. For technical audiences, this isn't about "just" having a backstop: it's about operational excellence, security, and resilience. When issues do arise, they must be addressed quickly and precisely.

The survey shows 71% of organizations expect response times under 12 hours for critical OSS production issues, marking a shift from traditional community support to commercial-grade service-level agreements. In financial services and manufacturing, over 90% consider paid OSS support essential. This need for enterprise-grade support peaks in mission-critical workloads (54%), systems handling sensitive data (43%), and regulated sectors (38%).

There's a perception that support is 'too expensive', but quite to the contrary, paid commercial support does not diminish open source's cost benefits; instead, it enhances them. Just like OSS adoption saves on costs and licences, robust support services protect organizations against the potentially disastrous costs of downtime, compliance failures, or data breaches. 

Canonical's own experience confirms that long-term OSS support is an increasingly strategic investment, especially in markets with high regulatory demands and cloud migration complexities.[6]

Take, for example, The European Space Agency (ESA), which depends on Canonical's distributions of Kubeflow and Spark running on Kubernetes for its mission operations. ESA highlights that Canonical's support lets them "sleep soundly," focusing on space missions while trusting infrastructure experts for uptime and reliability.[3]

How Ubuntu Pro locks in the value of open source

The biggest IT cost benefits of open source software come when free software innovation is combined with investments in professional support. After all, these low-cost (or sometimes free) tools are highly accessible and often intuitive to build with, but they can take a lot of time, effort, and specialized skills to maintain and secure in the long term.

Canonical takes away that time-consuming effort from developers, and allows them to focus on building, through Ubuntu Pro + Support, our comprehensive security maintenance and support service.

 Ubuntu Pro + Support gives users a wide range of benefits, including:

• Up to 15 years of security maintenance and support covering thousands of open source components from the kernel to the applications layer.
• Compliance-ready patching for mission-critical, regulated, and sensitive workloads.
• Predictable enterprise SLAs aligned with the sub–12-hour incident response expectations of 71% of organizations.
• Transparent, forecastable total cost of ownership, eliminating license uncertainties.

Ubuntu Pro extends cost benefits beyond licensing into comprehensive lifecycle management, turning open source affordability into sustained business value.

Open source is an economic strategy, not a shortcut

In conclusion, the business benefits of open source are clear to see, and widely reflected in the business landscape, where record numbers of organizations and tech stacks have open source as a core part of their mission-critical systems. The permissive licences, lack of vendor lock-in, and flexibility of open source make it a clear cost optimizer; but the most significant IT cost savings emerge when organizations combine free software innovation with enterprise-grade support, governance, and active engagement. Those who treat open source as core infrastructure aren't just saving money: they're building competitive, secure, and innovative foundations for growth.

$8.8 trillion – that's what open source is worth to the global economy. If you're not building on it, you're paying for it somewhere else. The organizations leading in innovation, efficiency, and resilience already know: open source is the foundation of competitive advantage.

Sources

• Open Source Software: The $9 Trillion Resource Companies Take for Granted, HBS
• Top challenges to using Open-source for product and application development, Gartner  
• What's the state of open source adoption in Europe?, Ubuntu blog  
• Open source technology in the age of AI, McKinsey  
• IDC Business Value Study: A 306% ROI within 3 years using Ubuntu Linux on Azure, Microsoft Azure  
• 54% of European enterprises want long term open source support: how Ubuntu Pro + Support delivers, Ubuntu blog  
• The value of open source software is more than cost savings, Linux Foundation  

Open source software is known for its ability to lower IT costs. But in 2025, affordability is only part of the story. A new Linux Foundation report, The strategic evolution of open source, reveals that open source has evolved from a tactical cost-saving measure to a mission-critical infrastructure supporting enterprise-grade investments, and delivering stronger business [...]


Categories: Linux Foundation, Open source, Support, Ubuntu Pro
Source: https://ubuntu.com//blog/the-8-8-trillion-advantage-how-open-source-software-reduces-it-costs Nov 24, 2025, 11:40 AM

Open design: the opportunity design students didn't know they were missing



What if you could work on real-world projects, shape cutting-edge technology, collaborate with developers across the world, make a meaningful impact with your design skills, and grow your portfolio... all without applying for an internship or waiting for graduation?

That's what we aim to do with open design: an opportunity for universities and students of any design discipline. 

What is open design, and why does it matter?

Before we go further, let's talk about what open design is. Many open source tools are built by developers, for developers, without design in mind. When open source software powers 90% of the digital world  (PDF), it leaves everyday users feeling overwhelmed or left out. Open design wants to bridge that gap. 

We aim to introduce human-centred thinking into open source development, enhancing these tools to be more intuitive, inclusive, and user-friendly. Most open source projects focus on code contributions, neglecting design contributions. That leaves a vast number of projects without a design system, accessibility audits, or onboarding documentation. That's where designers come in, helping shape better user experiences and more welcoming communities.

Open design is about more than just aesthetics. Open design helps to make technology work for people; that's exactly what open source needs. Learn more about open design on our webpage .

We want to raise awareness for the projects,  the problems that currently exist, and how we can fix them together,  and encourage universities and students to become advocates of open design. 

We want universities to connect their students to real-world, meaningful design opportunities in a field that is currently lacking the creativity of designers. Our goal is to help and motivate students to bring their design skills into open source projects and become advocates, to make open design accessible, practical, and empowering! 

How Canonical helps universities access open design

We want to help universities help students to access:

• Real-world experiences: Students apply their design skills to global projects to create valuable, demonstrable outcomes, beyond hypothetical briefs
• Interdisciplinary growth: Empower students to gain collaborative experience with developers, and navigate real tech workflows
• Accessible opportunities: No interviews, no barriers; just impact, experience, and learning

We have provided universities with talks and project briefs, enabling them to prepare students to utilise their expertise and design a brighter future for open source. If you're a department leader, instructor, or coordinator, exploring open source and open design  will help you to give your students unique access to industry-aligned experiences, while embedding values of collaboration, open contribution, and inclusive design.

Why should students care?

If you're a student in UX, UI, interaction, service, visual, HCI design, or any other field with design influence, you've been told how important it is to build your portfolio, gain hands-on experience, and collaborate with cross-functional teams. Open design is your opportunity to do so.

The best part is, you don't have to write a single line of code to make a difference! Open source projects are looking for:

• UX/UI improvements
• Accessibility and heuristic audits
• User research and persona development
• User flows and wireframes
• Information architecture reviews
• Design documentation and feedback systems

If you're in a design course, you already have, or are developing, the skills that open-source projects need. 

Open design is an opportunity to develop by collaborating across disciplines, navigating ambiguity, and advocating for users: skills employers value. With open design, you'll gain confidence in presenting ideas, working with international teams, and handling feedback in a real-world setting, growing in ways that classroom projects and internships often don't offer.

If you're aiming for a tech-focused design career, open design is one of the most impactful and distinctive ways to stand out!

How can you start?

Getting started is easier than you think, even if GitHub looks scary at first. Here's how:

• Learn the basics of GitHub

We've made a , and curated a list of other videos  to get to grips with GitHub.

• Find a project on contribute.design

It's like a job board for design contributions. These projects are waiting for you. 

• Understand the project's needs

Most projects on contribute.design  list what they're looking for in .design file or DESIGN.md guidelines.

• Pick an issue, or propose your own

Navigate to the Issues tab of the project repo, where you can filter for issues labelled for design. You can also use this tab to propose any issues you discover in the project.

• Contribute, collaborate, grow

Start adding your ideas, questions, and solutions to issues. You'll be collaborating, communicating, and making meaningful contributions.

You can explore more projects through the GitHub Explore  page, but not every project will have a design process in place; that's where your skills are especially valuable. If you don't see design issues, treat the project as a blank canvas. Suggest checklists, organise a design system, or improve documentation. The power is in your hands!

Reach out to maintainers, join community discussions, and don't hesitate to introduce design-focused thinking. Your initiative can spark meaningful change and help open source become more user-friendly, one project at a time.

View every project as an opportunity; you don't need an invitation to contribute, just curiosity, creativity, and the willingness to collaborate.

Interested? 

We're looking for universities and departments interested in introducing open design to their students. Whether that's through a talk, module project briefs, or anything else you'd like to see, we're excited to find ways to work together and bring open design to campus.

Are you a program director, a design department, a student group, or an interested student? Let's talk!

Reach out at [email protected]

What if you could work on real-world projects, shape cutting-edge technology, collaborate with developers across the world, make a meaningful impact with your design skills, and grow your portfolio... all without applying for an internship or waiting for graduation? That's what we aim to do with open design: an opportunity for universities and students of [...]


Categories: Design, open design, University
Source: https://ubuntu.com//blog/open-design-the-opportunity-design-students-didnt-know-they-were-missing Nov 21, 2025, 11:39 AM

Anbox Cloud 1.28.0 is now available!

Enhanced Android device simulation, smarter diagnostics, and OIDC-enforced authentication

The Anbox Cloud team has been working around the clock to release Anbox Cloud 1.28.0! We're very proud of this release that adds robust authentication, improved diagnostic tools, and expanded simulation options, making Anbox Cloud even more secure, flexible, and developer-friendly for running large-scale Android workloads.

Let's go over the most significant changes in this new version.

Strengthened authentication and authorization

Our OpenID Connect (OIDC)-based authentication and authorization framework is now stable with Anbox Cloud 1.28.0. This new framework provides a standardized approach for controlling access across web and command-line clients. Operators can now assign permissions through entitlements with fine-grained control, define authorization groups, and create and manage identities.

Configuring user permissions, understanding the idea of identities and groups, and looking through the entire list of available entitlements are all thoroughly covered in the new guides  that come with this release. This represents a significant advancement in the direction of a more uniform and standards-based access model for all Anbox Cloud deployments.

Simulated SMS support

This is one of our most exciting new features: developers testing telephony-enabled applications in Anbox Cloud can now simulate incoming SMS messages using the Anbox runtime HTTP API. 

This new functionality allows messages to trigger notifications the same way they would on a physical device, generating more realistic end-to-end scenarios. A new how-to guide  in our documentation provides detailed instructions on how to enable and use this feature.

Protection against accidental deletions

Because we know accidents happen (especially in production environments...), in order to reduce operational risk, this release introduces the ability to protect instances from accidental deletion. This option can be enabled directly in the dashboard either when creating a new instance or later from the Instance details page under the Security section. 

Once this protection option is turned on, the instance cannot be deleted, even during bulk delete operations, until the configuration is reset. This simple safeguard helps operators preserve important data and prevents costly mistakes in busy environments.

Improved ADB share management

Working with ADB (the Android Debug Bridge) has also become more flexible. Anbox Cloud now allows up to five ADB shares to be managed directly from the dashboard. For those who prefer the command line, the new amc connect command provides an alternative to the existing anbox-connect tool. Together, these improvements make it easier for developers to manage and maintain multiple debugging or testing sessions at once.

New diagnostic facility for troubleshooting

With version 1.28.0, we're introducing a new diagnostic facility in the dashboard. This tool is designed to simplify troubleshooting for both the instances and the streaming sessions themselves. 

This feature helps collect relevant diagnostic data automatically, thereby reducing the work needed to identify and resolve issues. It also makes collaboration with our Canonical support teams more efficient, as users can now provide consistent and accurate diagnostic information in a structured, standard format.

Sensor support in the Streaming SDK

Here's another hotly anticipated feature: the Anbox Streaming SDK gains expanded sensor support in this release. Our SDK now includes gyroscope, accelerometer and orientation sensors, allowing developers to test applications more interactively. 

Sensor support is disabled by default but can be easily enabled in the streaming client configuration. This addition opens up new possibilities for interactive use cases, such as gaming.

Upgrade now and stay tuned!

We think that Anbox Cloud 1.28.0 is our best release to date, and we are pleased to keep providing a feature-rich, scalable, and safe solution for managing Android workloads on a large scale. 

This latest version makes it easier than ever for developers and operators to create and test Android apps by introducing more precise device simulation, improved troubleshooting tools, and stricter access controls, as we've explained above.

Try it now and stay tuned for further developments in our upcoming releases. For detailed instructions on how to upgrade your existing deployment, please refer to the official documentation .

Further reading

Official documentation Anbox Cloud Appliance Learn more about Anbox Cloud or contact our team to discuss your use case

Android is a trademark of Google LLC. Anbox Cloud uses assets available through the Android Open Source Project.

Enhanced Android device simulation, smarter diagnostics, and OIDC-enforced authentication The Anbox Cloud team has been working around the clock to release Anbox Cloud 1.28.0! We're very proud of this release that adds robust authentication, improved diagnostic tools, and expanded simulation options, making Anbox Cloud even more secure, flexible, and developer-friendly for running large-scale Android workloads. [...]


Categories: Anbox, anbox cloud, Anbox Cloud Appliance
Source: https://ubuntu.com//blog/anbox-cloud-1-28-0-is-now-available Nov 21, 2025, 10:00 AM

83% of organizations see value in adopting open source, but report major gaps in security and governance

A new Linux Foundation report reveals how organizations worldwide are adopting, using, and perceiving open source software.

The Linux Foundation's latest report , The state of global open source, has just been released in collaboration with Canonical. The report follows the Linux Foundation's European spotlight report , released earlier this year, and confirms that many of the trends the European spotlight report unveiled are true on a global scale. In particular, the global spotlight report confirms the role of open source software as the foundation of business-critical systems worldwide, and indicates a continued increase in adoption. However, organizations continue to lack the governance, security testing, and strategic maturity required to manage open source strategically and securely. 

The report suggests that most organizations expect enterprise-grade performance from open source software, but under-invest in the required governance frameworks, security practices, and community engagement. 

Download the report
83% of organizations acknowledge open source is valuable to their future

According to the report, the trend of increasing open source adoption in the enterprise is set to continue, as 83% of enterprises consider open source software adoption valuable to their future. Likewise, the report reveals the centrality of open source software to the modern enterprise. Globally, enterprises have adopted open source software throughout their technical stacks: 55% have adopted open source operating systems, whilst 49% have adopted open source cloud and container technologies, and 46% open source web and application development. 

The widespread confidence that open source will play a pivotal role in many organizations' futures is closely connected to a growing understanding of the benefits of open source software adoption.   

86% report open source software improves productivity

This report confirms a shift in enterprises' strategic mindset around open source: 82% of respondents considered open source as an asset that enables innovation. Historically, open source software was often reserved for specific projects or use cases, like setting up web servers – with wider organizational use being viewed with some scepticism. 

Open source is now a "must-have." Why is this the case? Here's what the respondents had to say: 

• 86% stated that open source improves productivity 
• 79% reported improved software quality as a result of open source
• 78% highlighted improved security

Compared to the benefits seen by organizations using open source software in 2024, 46% reported increased business value from open source over the past year. The growing interest in and use of open source technologies is particularly clear for certain technologies, like AI.

AI technologies benefit most from being open source

The growing value of open source can partly be attributed to the influence of AI. Since 2024, there has been an increase in the adoption of open source AI and machine learning (ML) applications from 35% to 40% – a rise of 5%. Globally, AI and ML were perceived to be the technology most benefiting from being open source. Code visibility ensures organizations can more easily audit their AI systems, which makes compliance simpler, provides more transparency into how the AI model functions, and enables companies to run the AI on their own infrastructure – ensuring sensitive data never leaves the organization's control.

With growing adoption of AI and ML come new cybersecurity risks and requirements. However, the report indicates that organizations currently lack mature governance structures for their open source estates, creating additional complications to adopting AI and ML securely.

Lack of mature governance: only 34% of organizations have defined a clear open source strategy

Despite increasing adoption of open source technologies, many organizations still lack a mature governance strategy for their open source software. 

The number of organizations that have defined a clear open source strategy has grown by just 2% in the last year, to a total of 34%. That means that nearly two-thirds of organizations rely instead on informal strategies of governance of their open source estates, primarily due to budget constraints, shifting priorities and new strategic requirements. For example, when evaluating open source components for adoption:

• 44% of organizations check the activity level of the project community
• 31% use automated security testing tools
• 28% manually review the source code
• 36% evaluate the direct dependencies of the open source component

With less than half of organizations taking these important formal strategies before adoption, the report indicates that this "creates significant risk exposure and limits organizations' ability to capture the full strategic value of open source participation," signalling that this is a concern that organizations must take seriously.

Similarly, organizations demonstrate a lack of consensus around which security features and assurances matter to them when adopting open source components, with no single certification or assurance mechanism achieving adoption by more than a quarter of open source solutions. Almost a third of organizations (28%) don't know which assurances would make them more likely to trust an open source solution. This opens them up to serious security risks, like supply chain attacks.  

As a result, enterprises are increasingly turning to paid support options for their open source estates. 

54% view paid support as essential for mission-critical workloads

More than half of respondents consider paid support for their open source essential. As open source technologies have become critical to business infrastructure, expectations for open source software support are beginning to mirror that of commercial software standards: 

• 71% of organizations expect response times of less than 12 hours from support providers
• 47% expect rapid security patching for open source software in production environments
• 53% expect long term support guarantees for their open source software. 

Acquiring paid support for open source software makes this level of support achievable, which organizations broadly accept. On a granular level, the industries with the highest proportion that consider paid support essential are those that process sensitive or valuable data, such as manufacturing (97%) followed by financial services (96%), IT (91%) and government (92%). 

Conclusion and recommendations

The Linux Foundation's The state of global open source reveals that enterprises are relying on open source software and perceiving its benefits. However, increasing engagement with open source communities, more structured governance of open source estates, and structured security evaluations of open source elements before adoption will help organizations to strengthen the resilience of their open source infrastructure. 

Download the report
Adopt open source in your enterprise with Canonical ›

A new Linux Foundation report reveals how organizations worldwide are adopting, using, and perceiving open source software. The Linux Foundation's latest report, The state of global open source, has just been released in collaboration with Canonical. The report follows the Linux Foundation's European spotlight report, released earlier this year, and confirms that many of the [...]


Source: https://ubuntu.com//blog/state-of-global-open-source-2025 Nov 18, 2025, 06:10 PM

Everything you need to know about FIPS 140-3 on Ubuntu | Videos 

FIPS 140 is a highly demanding security standard that's mandatory for almost all high-security and federal environments. It can be hard to get right and may be a daunting part of the journey for those trying to meet compliance requirements like FedRAMP or CMMC. We get a lot of questions about FIPS 140-3, and so we decided to put together this comprehensive collection of video resources to answer the most burning ones we've had so far. 

In this collection, you'll be able to get answers to the most frequently asked FIPS questions, including:

• How to enable FIPS 140-3 on Ubuntu 22.04
• How to check if you're operating in FIPS mode
• How to enable FIPS on public clouds: AWS, Azure, GCP
• Which modules and hardware have been FIPS 140-3 certified for Ubuntu 
• Which FIPS-enabled Docker containers are available in Iron Bank 
• What are the most common issues when enabling FIPS 140-3 

How to enable FIPS on Ubuntu?



We'll start with the most common question: how do you enable FIPS on Ubuntu? The basic prerequisite is an Ubuntu Pro subscription, which is available either free for personal use or with a 30-day free trial for enterprise users. After subscribing, you'll get access to a dashboard where you can find a token that you can attach to an Ubuntu instance and get access to the FIPS certified modules. All you need to do is open your terminal and enter the following commands: 

sudo pro attach

sudo pro enable fips-updates

sudo reboot

You should see output like the following, indicating that the FIPS packages have been installed:

Installing FIPS Updates packages

FIPS Updates enabled

A reboot is required to complete install.

Enabling FIPS should be performed during a system maintenance window since this operation makes changes to underlying SSL-related libraries and requires a reboot into the FIPS-certified kernel.

How to check if you're operating in FIPS mode



After enabling FIPS mode, it is good to verify that it is activated. Luckily it's very straightforward to verify that FIPS mode is enabled. Just run this command in the terminal:

cat /proc/sys/crypto/fips_enabled

The output that indicates that FIPS mode is enabled is "1". 

How to enable FIPS on public clouds



It is very easy to enable FIPS in public clouds. In contrast to on-prem usage, Ubuntu images for public clouds already have FIPS enabled. Decide on the Ubuntu version you'd like to run, visit the relevant marketplace for your public cloud provider (for example: AWS , Azure , or GCP ), and search for the relevant image.

Which modules and hardware have been FIPS 140-3 certified 



Sometimes it can be tricky to figure out exactly which modules and hardware have been FIPS 140-3 certified. This video goes into extensive detail outlining the modules and components you'll be able to make full use of with FIPS 140-3 certified Ubuntu. 

To give a brief overview, the following certified cryptographic modules are available with Ubuntu 22.04 LTS:

• OpenSSL v3.0.5
• Libgcrypt v1.9.4
• GnuTLS v3.7.3
• Linux kernel v5.15.0
• StrongSwan v5.9.5

These modules have been developed and tested on a range of hardware platforms:

• Intel/AMD x86_64
• ARM64
• IBM z15

FIPS-enabled containers available in Iron Bank 



Canonical's container images are trusted and pre-approved for high-security use cases. Hardened Ubuntu images are already certified and available in the U.S. Department of Defense's Iron Bank, the official repository of security-hardened containers for government systems. You can find the code to build your own image here , or get the actual container that passed all the automated compliance checks here . Note, you would need to first register to get access to the platform. 

Canonical has also recently added FIPS and STIG-compliance to Canonical Kubernetes.  Built on Ubuntu Pro hosts, Canonical Kubernetes now includes FIPS 140-3 validated crypto modules out of the box and can be hardened for DISA-STIG. This means you can deploy secure, compliant clusters built on Ubuntu, making it much easier to meet FedRAMP and other federal compliance requirements right from your Kubernetes base.

Common issues when enabling FIPS 140-3 



Compliance always comes with challenges, but when we know the issues, we can help. The video above explains how to solve the most common issues that teams run into when enabling FIPS 140-3, including: 

• WiFi SSID should be 16 characters
• 32-bit crypto library versions must be removed, if present
• Full-disk encryption requires PBKDF2
  
  • sudo cryptsetup –pbkdf=pbkdf2 luksAddKey
• Some applications might not expect disallowed operations to fail – we will endeavor to provide fixes where possible

If you'd like to raise a bug/issue with FIPS compliance on Ubuntu, you can do it on Launchpad. Here is an example of OpenSSL bugs . 

Summary 

We hope this blog has been useful for you to learn more about FIPS 140-3 on Ubuntu. You caneasily get FIPS 140-3 compliance with an Ubuntu Pro subscription, which is free for personal use and offers afree trial  for enterprise-focused projects. Additionally, an Ubuntu Pro subscription  is not limited to only FIPS 140-3: the subscription also includes access to our hardening automation tools such as Ubuntu Security Guide , expanded security maintenance , Ubuntu fleet management , and more. And if you're looking for assistance with more complex enterprise use cases, you can simply contact us . 

More reading 

• Learn more about FIPS on Ubuntu
• Ubuntu security documentation
• Ubuntu Compliance Guide for the US Public Sector
• All security standards offered on Ubuntu 
• Case Study: How Lucid Software became FedRAMP compliant in less than 6 months

We get a lot of questions about FIPS 140-3, and so we decided to put together this comprehensive collection of video resources to answer the most burning ones we've had so far. 


Categories: CMMC, DISA STIG, FedRAMP, FIPS, FIPS certification, Hardening, Ubuntu Pro
Source: https://ubuntu.com//blog/everything-you-need-to-know-about-fips-140-3-on-ubuntu-videos Nov 17, 2025, 08:23 PM

A CISO's preview of open source and cybersecurity trends in 2026 and beyond

Open source has come a long way. Recently I was watching a , in which he discussed his vision for Ubuntu to provide quality support and security maintenance across the broad open source ecosystem, and it made me reflect on how far the open source software (OSS) community has come. Indeed, when looking at today's interoperable open source landscape, the fragmented, disconnected landscape of the past seems like another planet. 

But where is open source going next? What's in store for open source in the coming years, particularly in relation to security? Here's my reflection on the state of open source, and the trends that I expect to have an impact going into 2026. 

So, what is the state of open source in 2025?

Open source has become a ubiquitous part of software development – just look at the numbers. The average app today contains three times as many open source files as it did just four years ago, to the point where 97% of all applications contain OSS . At the same time, research commissioned by Canonical and IDC revealed that seven out of ten organizations consider open source to be "extremely important"  for running their mission-critical workloads. In fact, a Harvard study  found that if OSS didn't exist, the global expenditure on software would be 3.5 times higher. 

Put simply, the modern software landscape and market depends upon open source. Open source is popular because it is transformative for businesses, blending cost-effectiveness with access to sophisticated software. For instance, one company reduced their cloud total cost of ownership (TCO) by 76%  – saving approximately $370,000 – simply by transitioning to open source cloud infrastructure from Canonical. Previously unthinkable deployments, such as carrier-grade private 5G mobile networks, are now entirely achievable with open source tools, as we demonstrated last year in the Netherlands .

It's astonishing to think that just 20 years ago, most software companies explicitly forbid the use of any OSS in their contracts and terms of service. Open standards and interoperability – now synonymous with open source – were far from mainstream, and as a result, companies were forced into an uncomfortable decision: use the one expensive product that works, or spend months building and integrating everything from scratch. 

That's a lot of change in just 20 years: an entire ecosystem turned on its head. That's why I think it's important to pay critical attention to what's going around us, to spot trends that could be just as revolutionary (or disastrous), and work around them so that we can keep growing in the next 20 years.

Now that I've covered the current state of play, let's dive into the potential tech revolutions – or challenges – in-waiting. 

Future open source cybersecurity trends and their impact on cybersecurity
Open source adoption will continue its strong rise

The decision to move away from the constraints of proprietary systems is grounded in promise: as research by Canonical and IDC shows , businesses everywhere are using open source to keep down costs, fully own their infrastructure, and open up their systems to innovation. Ensuring that this promise is reflected in reality requires a proactive, forward-thinking approach. 

Your ability to adopt and adapt to the latest innovations in open source software will be vital. Two things are needed:

• A clear plan for adopting open source
• A way to manage this open source software supply chain post-adoption

Without a clear plan, you don't know where you're going; and without a management system, you'll be recreating the difficult, fragmented environment open source was 20 years ago. However, I believe that the ever wider adoption of open source will lead to interoperability and simplified supply chains becoming the norm in the software landscape – essentially, that open source software will reshape the software landscape in line with its values. People want open source software that's quick to install, easy to learn and use, and effortless to deploy and manage. If you're looking for a place to begin exploring how you can approach adopting open source into your project or organization, I highly recommend visiting our new dedicated webpage to helping you do exactly that.

A new age of digital sovereignty

The tumultuous geopolitical and cyberthreat landscape of 2025 has sparked a new movement towards independence and ownership in mainstream circles. Long story short, companies don't want to be left in the cold and dark if something happens with their overseas software or services provider – with the appeal of open source software being the control and freedom it offers to users.

Most notably, we've seen a major increase in interest, from businesses and governments, in open source, and repatriated products and infrastructure. For example, communal, municipal, and government authorities in nations like Germany and Denmark have expressed strong interest in moving away from proprietary systems in favour of open source alternatives. 

This doesn't mean proprietary tools will vanish. But it does mean that the pressure will increase on software providers to give peace of mind to end users and consumers that whatever system they use will remain online and functioning – even if new terms of service, sanctions, politics, or laws present unforeseen hurdles. Product features will still be important, but things like documentation, interoperability, system-agnostic design, training for users and system admins, and clear handover processes will be a new 'normal' in software offerings. 

Organizations must balance complexity with visibility

The developer landscape in 2025 has no shortage of tools, libraries, and solutions. If you want to build an app or service, you could build it from scratch, get portions of the solution from open source, or use already-built solutions. The challenge today is creating systems that give you a full view of these tools, and which allow them to be used securely and sustainably in the long term, without major costs. 

Security is hard. There is no one-size-fits-all solution, which introduces the challenge of complexity. Developers have a lot of shiny toys to choose from, and keeping them all securely managed within a usable, minimally complex environment will be a real challenge. Indeed, securing your ever-growing stack won't be easy. All this new tech doesn't just mean maximized performance and efficiency: it also means a bigger attack surface and new attack vectors born of the intricate interdependencies between systems. 

This is made harder by wider organizational  habits. Canonical and IDC's research shows that in general, organizations prize stability over constant updates: over 50% do not automatically upgrade to the newest versions of software when available. Instead, they wait until new features are needed or the program of free updates stops. They also draw these updates from various places: 57% draw from upstream source repositories, such as Github or Gitlab, and 51% draw from ecosystem packages, like pip or npm. 

This approach presents clear problems: if you draw packages from multiple different sources and only apply them when you're forced to update, it leads to more manual work and less certainty that you're meeting increasingly strict cybersecurity standards in today's market. 

Organizations still have some work to do in order to meet the challenge of complexity. Our research with IDC shows that 70% of organizations mandate vulnerability patching within 24 hours of identification for "high" and "critical" container vulnerabilities – however, just 41% of respondents are "very confident" or "completely confident" in their organization's ability to execute this policy. 

Remember that innovation isn't just driven by "the good guys": bad actors are also working to develop new attack methods and techniques, as AI becomes increasingly powerful and AI tools become more connected and widespread.

... especially as we enter the post vibe-coding era

We've all heard about and read about vibe coding, which is when a software engineer uses AI to generate and debug code. The hype wave of AI has led to fast adoption of generative AI tools as  incredible productivity magnifiers. While the allure of faster go-to-market times and improved cost-effectiveness is undeniable, the widespread adoption of AI tools in primary codebases, especially in environments with busy developers stretching across multiple projects, is creating significant security issues. The rapid, often less scrutinized generation of code through these tools can introduce vulnerabilities and amplify existing security challenges in complex software supply chains.

In the next few years, I predict the rise of a new  category of cyberincidents stemming from vibecoded feature additions. Organizations everywhere will need a clear policy on use of these tools, and robust checks and quality assurance processes to ensure that the vibecoded additions don't ignore instructions, or hallucinate package names and inadvertently execute malicious code inside production environments. 

Regulation is coming, and making things harder

We've seen a wave of regulation sweep across the US, EU, and UK in the last 4 years. As open source is adopted at the biggest levels of software, it will inherit the steep, strict demands that come with operating in a prestigious global playing field. 

Our research with IDC  gives a clearer view into the challenges and frustrations that organizations are experiencing with regulations and compliance:

• 37% of organizations are struggling to understand how regulations apply to specific systems, technologies, and software components.
• 34% are battling with how to enforce compliance standards across software systems in a consistent manner.
• 29% find it hard to source the resources and expertise needed to centrally manage software compliance.

Download the full IDC research report

As more regulation is rolled out and tightened up, these challenges will only become harder. Simply hitting the check box of compliance or hardening needed for enterprise eligibility isn't the point any more – security teams have their work cut out in establishing a clear, transparent track record of your software's trust lifecycle, and embed this transparency into your development practices. 

This means more work for people like me whose job it is to keep open source robust and trusted. But it's undeniably the right path. After all, we don't just want solutions that work – we want solutions that reflect, support, and continue the legacy of openness and contribution that allowed them to exist in the first place. And we want Canonical to be a leader in transparency and accountability, and institute practices that demonstrate the trustworthiness and compliance-readiness of our software and services. We recently published our Trust Center  – a web portal with all our certifications and compliance efforts – in order to demonstrate that when it comes to that hard work of regulations, we're doing it right. 

Visit the Canonical Trust Center

Wrapping up

In short: the future will be characterized by even more adoption of open source, increased regulation, a surge in AI-driven attack vectors, and a critical need for organizations to implement robust security policies and practices. Businesses must prioritize security without compromising stability, manage their open source supply chains effectively, and adapt to a landscape where transparency and compliance are paramount.

No matter the upcoming challenges to security in open source, I'm truly excited about this next phase. The openness we spent decades building has created a truly remarkable landscape of interoperability, where you can combine and integrate almost any technology into a functioning model. I've seen first hand how open source has changed everything in the software landscape, and I know how much more revolutionary it could be in the coming years.

References

• Black Duck, 2025 "Open Source Security and Risk Analysis 2025. Accessed at:  https://www.blackduck.com/resources/analyst-reports/open-source-security-risk-analysis.html
• Hoffmann, Manuel, Frank Nagle, and Yanuo Zhou. "The Value of Open Source Software." Harvard Business School Working Paper, No. 24-038, January 2024.
• The state of software supply chains: Security challenges, opportunities and the path to resilience with open source software
• https://ubuntu.com/blog/telco-bringing-automation-to-open-source-5g-software-at-ubuntu-summit-2024

More reading

• What is Application Security (AppSec)?
• A CISO's guide to Application Security best practices
• Extra Factor Authentication: how to create zero trust IAM with third-party IdPs
• The Cyber Resilience Act: What it means for open source 

Resources

Webpage: open source adoption

Whitepaper: a guide to global IoT compliance

Whitepaper: a guide to open source vulnerability management

Where is open source going next? What's in store for open source in the coming years, particularly in relation to security? Here's a CISO's reflection on the state of open source, and the trends that you can expect to have an impact going into 2026. 


Categories: Open source
Source: https://ubuntu.com//blog/a-cisos-preview-of-open-source-and-cybersecurity-trends-in-2026-and-beyond Nov 14, 2025, 10:00 AM

Canonical Kubernetes officially included in Sylva 1.5

Sylva 1.5 becomes the first release to include Kubernetes 1.32, bringing the latest open source cloud-native capabilities to the European telecommunications industry.

With the launch of Sylva 1.5, Canonical Kubernetes  is now officially part of the project's reference architecture. This follows its earlier availability as a technology preview in Sylva 1.4.

What is the Sylva project?

The Sylva  project is backed by Europe's largest telecom operators and vendors, including Nokia and Ericsson, and is designed to deliver an open, telco-friendly cloud-native framework. By focusing on interoperability, performance, and automation, Sylva addresses the unique requirements of telecommunications providers building Kubernetes telco platforms for their IT, 5G core, O-RAN, and edge services. Canonical is thrilled to be included as part of the Sylva project, supporting the important work of creating an open source cloud-native reference architecture capable of hosting the mission-critical workloads of the telco industry.

Canonical's contribution to the Kubernetes telco ecosystem

Canonical Kubernetes brings unique advantages to Sylva's mission of reducing fragmentation and simplifying operations across telecom networks. One of its defining features is up to 12 years of long-term support (LTS). For operators running critical workloads, this ensures stability, ongoing security updates, and compliance with industry standards over a much longer lifecycle than other Kubernetes distributions.

Canonical Kubernetes also provides the flexibility needed for large-scale Kubernetes telco deployments, from core networks to the far edge. Operators benefit from a distribution designed to be both lightweight and maintained with security in mind, while remaining capable of handling advanced workloads such as 5G core, O-RAN, and AI-driven services.

Guillaume Nevicato, Sylva Technical Steering Committee co-chair and Orange Telco Cloud Product Manager, recognized the importance of this contribution:

Canonical is a major open-source player that has achieved the integration of their Canonical Kubernetes distribution into Sylva. They fully embrace Sylva's full-stack automation, including cluster lifecycle management, storage, networking, observability, GreenDashboard, and security enhancements. This represents a significant step forward in Sylva's adoption.
Accelerating the validation of Kubernetes telco workloads

A critical part of Sylva's role is validating network functions against its reference framework, ensuring that cloud-native network functions (CNFs) and virtualized network functions (VNFs) perform reliably across any Sylva-compliant infrastructure. Following its technical preview in the previous Sylva release, Canonical Kubernetes is now included with 1.32 LTS in Sylva 1.5. This allows it to enter the validation process with the Sylva Validation Workgroup, covering key telecom workloads such as 5G Core, O-RAN, and distributed edge services.

For operators, this means they can deploy Kubernetes telco workloads with confidence, knowing that interoperability and performance have already been tested. Vendors also benefit, since a single certification process ensures compatibility across multiple Sylva-aligned platforms, reducing time to market for new services.

Looking ahead: future opportunities for integration

Canonical is now exploring how its broader infrastructure portfolio, including technologies like Canonical OpenStack,  a featureful, highly customizable cloud, and MAAS , bare-metal server automation software, could complement Sylva's approach in the future. These solutions could help create a more unified environment for both virtualized and cloud-native network functions, enhancing the flexibility of Kubernetes telco deployments.

As Sylva evolves, Canonical will continue engaging with operators, vendors, and the wider community to identify opportunities where its open source software can add value.

Building the future of Kubernetes in telco

The inclusion of Canonical Kubernetes in Sylva represents a milestone in the adoption of open source telco cloud infrastructure. Operators now have access to a validated, commercially supported Kubernetes telco distribution that combines long-term stability, security, and interoperability with the innovation of cloud-native technologies.

With Kubernetes at the foundation, operators can accelerate the rollout of next-generation network functions and services, while benefiting from the reliability and flexibility that only open-source collaboration can deliver.

Next steps

Are you building your telco cloud strategy? Learn how Canonical Kubernetes can give you a stable, validated, and open foundation for 5G, O-RAN, and edge workloads.

• Explore Canonical telco solutions
• Find out how to Transform your 5G infrastructure with Canonical
• Learn how Nova Telecommunications is building its next-gen telco cloud with Canonical  in the case study
• Read our in-depth white paper on how to unlock the full potential of Kubernetes for telco performance
• Get in touch with Canonical's telco team  to discuss how we can help design and support your Kubernetes telco deployments

Sylva 1.5 becomes the first release to include Kubernetes 1.32, bringing the latest open source cloud-native capabilities to the European telecommunications industry. With the launch of Sylva 1.5, Canonical Kubernetes is now officially part of the project's reference architecture. This follows its earlier availability as a technology preview in Sylva 1.4. What is the Sylva [...]


Categories: 5g, 5G core network, canonical kubernetes, Sylva, Telco
Source: https://ubuntu.com//blog/canonical-kubernetes-officially-included-in-sylva-1-5 Nov 13, 2025, 07:37 PM

Canonical expands total coverage for Ubuntu LTS releases to 15 years with Legacy add-on

Expansion ensures business continuity without forcing major upgrades

Today, Canonical announced the expansion of the Legacy add-on for Ubuntu Pro, extending total coverage for Ubuntu LTS releases to 15 years. Starting with Ubuntu 14.04 LTS (Trusty Tahr), this extension brings the full benefits of Ubuntu Pro – including continuous security patching, compliance tooling and support for your OS – to long-lived production systems.

In highly regulated or hardware-dependent industries, upgrades threaten to disrupt tightly controlled security and compliance. For many organizations, maintaining production systems for more than a decade is complex, but remains a more sensible option than a full upgrade.

That's why, in 2024, we first introduced the Legacy add-on  for Ubuntu Pro, starting with Ubuntu 14.04 LTS (Trusty Tahr). The Legacy add-on increased the total maintenance window for Ubuntu LTS releases to 12 years: five years of standard security maintenance, five years of Expanded Security Maintenance (ESM), and two years of additional coverage with the Legacy add-on – with optional support throughout. Due to the positive reception and growing interest in longer lifecycle coverage, we're excited to now extend the Legacy add-on to 5 years, bringing a 15-year security maintenance and support window to Ubuntu LTS releases.

A 15-year lifecycle for stability

Throughout this 15-year window, Ubuntu Pro provides continuous security maintenance across the entire Ubuntu base, kernel, and key open source components. Canonical's security team actively scans, triages, and backports critical, high, and select medium CVEs to all maintained LTS releases, ensuring security without forcing disruptive major upgrades that break compatibility or require re-certification.

Break/fix support remains an optional add-on. When production issues arise, you can get access to our Support team through this service and troubleshoot with experts who contribute to Ubuntu every day, who've seen similar problems before and know how to resolve them quickly.

The scope of the Legacy add-on itself is unchanged, but the commitment is longer, giving users additional years to manage transition timelines and maintain compliance. 

This updated coverage applies from Ubuntu 14.04 LTS onward. With this extension, Ubuntu 14.04 LTS is now supported until April 2029, a full 15 years after its debut.



By committing to a 15-year lifecycle, Canonical gives users:

• Realistic timelines for planning and executing major migrations
• Continuous security and compliance coverage for long-lived systems
• Flexibility to modernize infrastructure strategically rather than reactively

Infrastructure is complicated, and upgrades carry real costs and risks. This expansion acknowledges those realities and gives you the support duration your deployments actually require.

A simple path to extended coverage

Current Ubuntu Pro subscriptions will continue uninterrupted. No re-enrollment, no reinstallation, no surprise migration projects.

The Legacy add-on is available after the first 10 years of coverage (standard security maintenance plus ESM, and optional break/bug fix support), priced at a 50% premium over standard Ubuntu Pro. This applies whether you're approaching that milestone with 16.04 LTS or already using the Legacy add-on with 14.04 LTS.

To activate coverage beyond ESM, contact Canonical Sales  or reach out to your account manager.  

For more information about the Legacy add-on, visit our Ubuntu Pro page .  

Learn more:

• Ubuntu Pro 
• Canonical Support
• Read how SBI BITS ensures business continuity with Canonical's support

Ubuntu Pro now supports LTS releases for up to 15 years through the Legacy add-on. More security, more stability, and greater control over upgrade timelines for enterprises.


Categories: LTS, Support, Ubuntu Pro
Source: https://ubuntu.com//blog/canonical-expands-total-coverage-for-ubuntu-lts-releases-to-15-years-with-legacy-add-on Nov 13, 2025, 11:11 AM