Follow ZDNET: Add us as a favorite source On Google.
ZDNET Highlights
- Ubuntu Core provides stronger security than ever before.
- The core is great for IoT or edge devices in the EU.
- This Linux distro comes with 15 years of support.
You want a rock-solid Linux distro that you can rely on for 15 years for edge computing and Internet of Things (IoT) devices? check out ubuntu core 26Canonical’s latest long-term support (LTS) delivery for mission-critical and low-latency AI workloads.
Also: Microsoft surprises with its first server Linux distribution: Azure Linux 4.0
For those unfamiliar with Ubuntu Core, it’s a separate, embedded Linux OS that takes regular Ubuntu and turns it into a minimalist, containerized system, where the kernel, base OS, and apps are all delivered as a snap. Ubuntu Core targets IoT, industrial, robotics, digital signage, appliances, and other edge deployments where you want predictable behavior, remote management, and robust over-the-air (OTA) updates rather than general-purpose servers or desktops.
Linux that is safe to use until 2041
Canonical is positioning Ubuntu Core as a ruggedized Linux distribution for devices that must run unattended for years. Like previous core releases, each component is distributed as a sandboxed, cryptographically signed snap, maintaining a measured boot chain that only runs verified code. This is a Linux you can trust to run safely until 2041.
This is no small matter, as emerging security regulations, particularly the EU Cyber ​​Resilience Act (CRA), require clear component provenance, long-term sustainability, and accountability across the entire stack. As John Seager, Canonical’s VP of Ubuntu Engineering, said in a blog post: “With Ubuntu Core 26, we continue Providing critical infrastructure operators with the necessary basis to meet the CRAsRun proven, immutable edge AI workloads, and securely manage devices at scale.”
Also: Fourth Linux kernel glitch this month could lead to theft of SSH host keys
A major theme in Ubuntu Core 26 is to reduce the cost and friction of provisioning and maintaining large device fleets. Canonical says an improved snap-delta format reduces OTA update size by 50% to 90% for most snaps, with updates for core base snaps reduced from about 16MB to just 1.5MB. Additionally, new initramfs-based installation paths avoid unnecessary reboots by default, speeding up first-boot provisioning and making device rollouts faster and more predictable.
Ubuntu Core 26 also debuts chisel-based manufacturing system Canonical calls a new “precision led” approach to the creation of core base snaps. Chisel is a developer tool for extracting highly customized, specialized package slices from Ubuntu packages to create compact, secure software.
In Chisel, instead of relying on layered recipes and post-processing, the new system uses release-specific “slice” definitions with clear, traceable dependencies, allowing each file in the file system to be linked to a specific slice and source package. Canonical says this improves integrity checks and vulnerability triage by giving operators better visibility into the origin of a given component and its dependencies. The Chisel pipeline also provides size savings, resulting in a 7% reduction in the base image footprint.
At the bootloader layer, Ubuntu transfers the core 26 U-boot configuration into a single raw partition with redundant environment support. This approach makes updates to both U-Boot and Snapdeal safer and more reliable while avoiding recovery problems associated with file-based storage.
Lower risk of security-key compromise
On the technical side, the new core introduces fundamental changes to full-disk encryption. TPM-sealed keys are now stored directly Linux Unified Key Setup (LUKS2) Topic. This setup reduces the risk of key reuse in different device situations. new native OP-TE brings integration ARM TrustZone-supported key security For embedded deployment. Sealing and opening disk encryption keys in a trusted execution environment rather than in the normal operating system reduces the risk of security-key compromise.
Also: Red Hat Desktop vs. Fedora Hummingbird: Which AI Development Linux Path Is Right for You?
Beyond the base operating system, new and updated system snaps aim to accelerate device deployment. especially, snapcraft build tool Gets a key attribute called component. This feature packages large or optional resources (such as debug symbols, translations, or alternative drivers) with the main snap without extending the base installation. First tested in Ubuntu Core 24 for distributed Nvidia drivers, the components are now open to the broader Snap ecosystem.
Canonical is also expanding its livepatch service For more of the core ecosystem. With the dual release of Ubuntu 26.04 LTS and Ubuntu Core 26, LivePatch’s reboot‑less kernel updates now reach ARM64 for the first time and receive official support on AMD64 in all Ubuntu Core releases since Core 20. The company touts this change as a way to meet CRA expectations for timely vulnerability remediation without taking critical edge devices offline.
Embedded Linux for EU
On the graphical side, ubuntu frameCore’s display server for embedded graphical applications now supports multiple apps on a single display with configurable layouts, custom client placement, and an accessibility launcher. Graphics-intensive workloads benefit from the new GPU-2604 The interface, which provides hardware acceleration for Core 26 applications and is supported by a new Snapcraft extension that simplifies graphics integration.
Also: Canonical’s approach to AI is refreshingly thoughtful – Microsoft should take note
Canonical also said it was assuming “manufacturer” responsibilities for the operating system under the CRA. This is no small thing, as Canonical stands behind long-term security maintenance for core modules, continuous Common Vulnerabilities and Exposures (CVE) monitoring, coordinated disclosures and adherence to standards, e.g. IEC 62443‑4‑1. This approach, combined with built-in software traceability and modularity, is presented as a tool to define clear boundaries of responsibility between Canonical, device manufacturers, and application vendors. This stance is required to sell devices in the EU under the CRA.
So, while Ubuntu Core is not for everyone, I guarantee you that if your company wants to sell IoT or edge gear in the EU, this new embedded Linux has exactly what you need to pass the CRA and thus be marketable in Europe.
