aster.cloud aster.cloud
  • /
  • Platforms
    • Public Cloud
    • On-Premise
    • Hybrid Cloud
    • Data
  • Architecture
    • Design
    • Solutions
    • Enterprise
  • Engineering
    • Automation
    • Software Engineering
    • Project Management
    • DevOps
  • Programming
    • Learning
  • Tools
  • About
  • /
  • Platforms
    • Public Cloud
    • On-Premise
    • Hybrid Cloud
    • Data
  • Architecture
    • Design
    • Solutions
    • Enterprise
  • Engineering
    • Automation
    • Software Engineering
    • Project Management
    • DevOps
  • Programming
    • Learning
  • Tools
  • About
aster.cloud aster.cloud
  • /
  • Platforms
    • Public Cloud
    • On-Premise
    • Hybrid Cloud
    • Data
  • Architecture
    • Design
    • Solutions
    • Enterprise
  • Engineering
    • Automation
    • Software Engineering
    • Project Management
    • DevOps
  • Programming
    • Learning
  • Tools
  • About
Canonical announces Ubuntu Security Research Alliance Program
  • Research
  • Technology

Canonical announces Ubuntu Security Research Alliance Program

  • Dean Marc
  • December 4, 2024
  • 3 minute read

New partnership program for open source vulnerability scanning organizations will enhance open source software vulnerability information through more accurate, timely and actionable results. 

Today, Canonical, the publisher of Ubuntu, announced its new Ubuntu Security Research Alliance Program, a free partnership between Canonical and open source vulnerability scanning organizations. 


Partner with aster.cloud
for your next big idea.
Let us know here.



From our partners:

CITI.IO :: Business. Institutions. Society. Global Political Economy.
CYBERPOGO.COM :: For the Arts, Sciences, and Technology.
DADAHACKS.COM :: Parenting For The Rest Of Us.
ZEDISTA.COM :: Entertainment. Sports. Culture. Escape.
TAKUMAKU.COM :: For The Hearth And Home.
ASTER.CLOUD :: From The Cloud And Beyond.
LIWAIWAI.COM :: Intelligence, Inside and Outside.
GLOBALCLOUDPLATFORMS.COM :: For The World's Computing Needs.
FIREGULAMAN.COM :: For The Fire In The Belly Of The Coder.
ASTERCASTER.COM :: Supra Astra. Beyond The Stars.
BARTDAY.COM :: Prosperity For Everyone.

The goal is to ensure vulnerability data is more transparent and standardized, while improving on-platform security for Ubuntu users through more proactive threat detection. Organizations who operate or develop security scanning products are welcome to submit their interest to join.

This partnership program has been created specifically for security research providers, such as vulnerability scanners, in order to improve the accuracy and usability of vulnerability information and provide remediation advice for Ubuntu users into their results.

“Ubuntu is more than an operating system, it’s a gateway to consume open source more broadly. This partnership  will make that pathway to everything open source more reliable, thanks to more accurate, transparent and trustworthy security scanning results,” said Lech Sandecki, Product Manager at Canonical. “It’s always good when a security scanner tells you that something is wrong because you know there’s something to fix – but these results are sometimes not very actionable. Through our Ubuntu Security Research Alliance Program, we will be able to bring joint customers of Ubuntu and program partners results that aren’t just more accurate, but also more actionable, with clear indicators of how to fix it.”

Join the partnership or find out more  

Securing the pathway to open source with accurate and actionable scanning

The new Ubuntu Security Research Alliance Program will directly benefit joint customers of Ubuntu and security scanning products, as it provides security products easy access to accurate information about vulnerabilities and available fixes for all packages in Ubuntu, and correct reporting on all Canonical products within security scanner results. 

Read More  Cloud CISO Perspectives: January 2022

The collaboration will allow security scanner operators to reduce false positives and provide more actionable recommendations regarding CVE remediation steps. Program members will get early access to Ubuntu’s future roadmaps for any changes in tools and processes that could accompany future releases. 

“Securing open source software is a critical aspect of securing today’s software supply chain,” said Scott Johnson, Vice President of Product Management at Black Duck.  “Canonical and Black Duck have been working strategically to help ensure customers have the highest levels of accuracy and value as it pertains to their Ubuntu components. Together with Canonical we provide significant benefits to customers with market leading SBOM visibility, accuracy and control across all their systems.”

Building on Canonical’s intensive efforts to make open source more secure 

The Ubuntu Security Research Alliance Program is just the latest effort in Canonical’s commitment to improve the wider security of open source software. Most recently, Canonical announced its partnership with the OpenSSF Vulnerability Disclosures Working Group in order to make its Ubuntu Security Notices (USNs) available in the OSV format.

Using the information provided, developers can identify known third-party, open source dependency vulnerabilities that pose a genuine risk to their application and its environment. This collaboration between Canonical and OSV aims to simplify vulnerability management and further enhance security for Ubuntu users.

“Research alliance programs facilitate intelligence sharing among security teams and system administrators, reducing the window of opportunity threat actors have to exploit newly disclosed vulnerabilities. We are very pleased to extend our partnership with Canonical and their Research Alliance Program to enhance the speed, accuracy and actionability of our security reports on Ubuntu-based systems”, said Ray Carney, Director of Research at Tenable.

Read More  Bio Farma Collaborates With Google Cloud And ‘Connectedlife With Fitbit’ To Empower Healthier Living And Chronic Disease Prevention Across Indonesia

About Canonical 

Canonical, the publisher of Ubuntu, provides open source security, support and services. Our portfolio covers critical systems, from the smallest devices to the largest clouds, from the kernel to containers, from databases to AI. With customers that include top tech brands, emerging startups, governments and home users, Canonical delivers trusted open source for everyone. 

Learn more at https://canonical.com/ 

Learn more about:

  • Ubuntu Pro
  • Open source vulnerability management
  • Ubuntu Security Notices now available in OSV format

Join the partnership or find out more

Source: zedreviews.com


For enquiries, product placements, sponsorships, and collaborations, connect with us at [email protected]. We'd love to hear from you!

Our humans need coffee too! Your support is highly appreciated, thank you!

Dean Marc

Part of the more nomadic tribe of humanity, Dean believes a boat anchored ashore, while safe, is a tragedy, as this denies the boat its purpose. Dean normally works as a strategist, advisor, operator, mentor, coder, and janitor for several technology companies, open-source communities, and startups. Otherwise, he's on a hunt for some good bean or leaf to enjoy a good read on some newly (re)discovered city or walking roads less taken with his little one.

Related Topics
  • Canonical
  • Research
  • Security
  • Security Research Alliance Program
  • Ubuntu
You May Also Like
View Post
  • Computing
  • Multi-Cloud
  • Technology

Reliance on US tech providers is making IT leaders skittish

  • May 28, 2025
View Post
  • Computing
  • Multi-Cloud
  • Technology

Examine the 4 types of edge computing, with examples

  • May 28, 2025
View Post
  • Computing
  • Multi-Cloud
  • Technology

AI and private cloud: 2 lessons from Dell Tech World 2025

  • May 28, 2025
View Post
  • Computing
  • Multi-Cloud
  • Technology

TD Synnex named as UK distributor for Cohesity

  • May 28, 2025
View Post
  • Computing
  • Multi-Cloud
  • Technology

Broadcom’s ‘harsh’ VMware contracts are costing customers up to 1,500% more

  • May 28, 2025
View Post
  • Computing
  • Multi-Cloud
  • Technology

Weigh these 6 enterprise advantages of storage as a service

  • May 28, 2025
View Post
  • Computing
  • Multi-Cloud
  • Technology

Pulsant targets partner diversity with new IaaS solution

  • May 23, 2025
View Post
  • Computing
  • Multi-Cloud
  • Technology

Growing AI workloads are causing hybrid cloud headaches

  • May 23, 2025

Stay Connected!
LATEST
  • 1
    Just make it scale: An Aurora DSQL story
    • May 29, 2025
  • 2
    Reliance on US tech providers is making IT leaders skittish
    • May 28, 2025
  • Examine the 4 types of edge computing, with examples
    • May 28, 2025
  • AI and private cloud: 2 lessons from Dell Tech World 2025
    • May 28, 2025
  • 5
    TD Synnex named as UK distributor for Cohesity
    • May 28, 2025
  • Weigh these 6 enterprise advantages of storage as a service
    • May 28, 2025
  • 7
    Broadcom’s ‘harsh’ VMware contracts are costing customers up to 1,500% more
    • May 28, 2025
  • 8
    Pulsant targets partner diversity with new IaaS solution
    • May 23, 2025
  • 9
    Growing AI workloads are causing hybrid cloud headaches
    • May 23, 2025
  • Gemma 3n 10
    Announcing Gemma 3n preview: powerful, efficient, mobile-first AI
    • May 22, 2025
about
Hello World!

We are aster.cloud. We’re created by programmers for programmers.

Our site aims to provide guides, programming tips, reviews, and interesting materials for tech people and those who want to learn in general.

We would like to hear from you.

If you have any feedback, enquiries, or sponsorship request, kindly reach out to us at:

[email protected]
Most Popular
  • 1
    Cloud adoption isn’t all it’s cut out to be as enterprises report growing dissatisfaction
    • May 15, 2025
  • 2
    Hybrid cloud is complicated – Red Hat’s new AI assistant wants to solve that
    • May 20, 2025
  • 3
    Google is getting serious on cloud sovereignty
    • May 22, 2025
  • oracle-ibm 4
    Google Cloud and Philips Collaborate to Drive Consumer Marketing Innovation and Transform Digital Asset Management with AI
    • May 20, 2025
  • notta-ai-header 5
    Notta vs Fireflies: Which AI Transcription Tool Deserves Your Attention in 2025?
    • May 16, 2025
  • /
  • Technology
  • Tools
  • About
  • Contact Us

Input your search keywords and press Enter.