Movatterモバイル変換

[0]ホーム
URL:

Your submission was sent successfully!Close

Thank you for contacting us. A member of our team will be in touch shortly.Close

You have successfully unsubscribed!Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Your preferences have been successfully updated.Close notification

Please try again orfile a bug report.Close

Canonical Ubuntu
Security

Ubuntu security

Enterprise-grade security for open source environments

Ubuntu delivers transparency, predictability, and automation to help teams safeguard their open source stack and meet compliance requirements.

Ubuntu is trusted by

Bloomberg
AT&T
Walmart
Deutsche Telekom
Cisco
NTT
Paypal

Platform security
from the ground up

  • Default secure configuration: Ubuntu is configured to be secure out-of-the-box, with most network ports closed by default and a firewall enabled to prevent unauthorized access.
  • Unprivileged User Namespace Restrictions reduce the potential attack surface by limiting certain user capabilities.
  • Full Disk Encryption (FDE): Protects data at rest by encrypting entire storage devices.
  • AppArmor provides fine-grained security confinement for applications, limiting their access to system resources and reducing attack surfaces.

Reliable
vulnerability management

Ubuntu is a Linux-based OS based on Unix. It inherits Discretionary Access Control and includes Mandatory Access Control via AppArmor. Since 2004, Ubuntu has provided a robust security foundation to protect your open source ecosystem, with up to 15 years of security maintenance and support to let you build with confidence.

From identification to testing and remediation

Canonical works with leading scanning vendors to help users identify vulnerabilities in their Ubuntu environment and reduce the likelihood of false positives. Vulnerability information including available fixes, is distributed through open standard formats.

Features like 'unattended-upgrades' enable you to apply fixes automatically when they are available. Our team tests and backports the patches to previous, supported versions of Ubuntu, so your environment remains stable.

Fast fixes

Vulnerabilities will always arise. What matters is the speed and success with which they are resolved – and nobody provides fixes available faster than Canonical.

Long Term Support (LTS)

Every Long Term Support (LTS) release of Ubuntu comes with five years of standard security and maintenance updates for the main OS. Expand that to up to 15 years with Ubuntu Pro – not just for the main OS but for all the open source packages you consume from Ubuntu.

Run regulated and high-security workloads on Ubuntu

Ubuntu Pro has been designed to simplify your security compliance burden for frameworks such as NIST, FedRAMP, PCI-DSS, ISO27001 by providing FIPS-validated cryptographic modules, and automated system hardening for CIS and DISA STIG.

How do I harden my Ubuntu system?

Hardening always involves a tradeoff with usability and performance. The default configuration of Ubuntu LTS releases, as provided by Canonical, balances between usability, performance, and security. However, systems with a dedicated workload are well positioned to benefit from hardening. You can reduce your workload's attack surface by applying an Industry-accepted baseline.

Maximize security and
compliance with Pro

Ubuntu is a trusted platform used in millions of production environments and devices. Ubuntu Pro is a subscription on top of Ubuntu that helps organizations empower their developers to use all the open source available in Ubuntu repositories in a secure, compliant and fully supported manner. It's a comprehensive enterprise subscription that bundles all of Canonical's security, support and compliance offerings.

Ubuntu

  • 5 years of Long-Term Support (LTS) for the Operating System's Main repository
  • A vast, securely-maintained software ecosystem
  • Enterprise-grade security features such as Secure Boot and AppArmor

Ubuntu Pro

  • Expanded Security Maintenance (ESM) for up to 15 years for the Operating System as well as Infrastructure and Applications.
  • Kernel Livepatch to minimize downtime without reboots.
  • Landscape to deploy, monitor and manage your Ubuntu servers and desktops. Manage security updates and compliance audits.
  • Enterprise support tier, including phone and ticket-based support.
  • Hardening and compliance via CIS benchmarks and DISA-STIG guidelines. FIPS-certified cryptography to meet government and enterprise security mandates.
  • Access to Canonical-maintained security patches for the Universe repository – ideal for teams who want to use a single trusted repository for open source packages.

Ubuntu Pro is free for personal use.
Start today ›

Ubuntu security resources

Airlock Digital boosts operational performance on Azure by 30%

Faced with the looming End of Life (EoL) for CentOS 7, Airlock Digital needed to find a new OS to drive their application control software. By migrating to Ubuntu 24.04 LTS for Azure, Airlock Digital was able to continue stable operations and meet stricter security requirements, with up to 40% improvements in performance and operational cost savings.

Large games publisher secures code dependencies and avoid costly migration

A leading game developer chose Ubuntu Pro to secure its mission-critical code for its gaming titles. Ubuntu Pro helped the company to avoid a costly, effort-intensive migration to upgrade to more recent versions — an effort that would have taken their teams 6 to 8 months to complete.

Lucid Software meet FedRAMP compliance for government contracts

Lucid wanted to offer its Visual Collaboration Suite to Federal and Government organizations — but this required meeting FedRAMP compliance. To solve this challenge, Lucid accessed a FIPS-compliant Ubuntu image for AWS by adopting Ubuntu Pro through the AWS marketplace, allowing them access to all the FIPS 140-2 certified packages and auditing tools they would need.

Ubuntu security disclosure policy

Canonical and the Ubuntu Security Team participate in responsible disclosure and collaborate with the wider community on security issues.

Stay informed with the latest security updates and fixes

The Ubuntu experts

Canonical certifies, secures and enables enterprise open source on Ubuntu. Tell us about your project so we bring the right team to the conversation.
Tell us about your project
Tell us about your project
If you use Ubuntu, which version(s) are you using?
If you use Ubuntu, which version(s) are you using?
  • LTS within standard support
  • LTS out of standard support
  • Outdated or non-LTS releases
  • Other
What kind of device are you using?
What kind of device are you using?
How many devices?
How many devices?
How do you consume open source?
How do you consume open source?
Do you have specific compliance or hardening requirements?
Do you have specific compliance or hardening requirements?
Who is responsible for tracking, testing and applying CVE patches in a timely manner?
Who is responsible for tracking, testing and applying CVE patches in a timely manner?
What advice are you looking for?
What advice are you looking for?
How should we get in touch?
How should we get in touch?
  • By submitting this form, I confirm that I have read and agree toCanonical's Privacy Notice andPrivacy Policy.
[8]ページ先頭
©2009-2026 Movatter.jp