Linaro Logo

Every Month You Wait

Makes CRA Compliance Harder

Organizations that prepare early will spend less time reacting and more time shipping secure products.
Compare Linaro's CRA offerings and choose the level of support that's right for your business.

CRA Scan

Binary scan of a software image to produce a software bill of materials and vulnerability report

Core Services

  • Binary scan of software image
  • Software bill of materials (SBOM) generation
  • CVE Vulnerability report
  • Linaro hosted private dashboard

Advanced Analysis

Not included

Integration & Automation

Not included

Compliance & Support

Not included

Enterprise

Not included

Contact Us

CRA Analysis

Source based scanning through direct integration into the build system to produce a software bill of materials, vulnerability report and 3rd party component analysis

Core Services

  • Binary scan of software image
  • Software bill of materials (SBOM) generation
  • CVE Vulnerability report
  • Linaro hosted private dashboard
  • Source based scan on software image with Linaro's toolchain

Advanced Analysis

  • CI/CD integration for continuous scanning and SBOM generation

Integration & Automation

Not included

Compliance & Support

Not included

Enterprise

  • 3rd party due diligence "health" report
Contact Us

CRA Certify

End to end services, from risk assessment, through to conformity assessment, to achieve CRA compliance

Core Services

  • Binary scan of software image
  • Software bill of materials (SBOM) generation
  • CVE Vulnerability report
  • Linaro hosted private dashboard
  • Source based scan on software image with Linaro's toolchain

Advanced Analysis

  • CI/CD integration for continuous scanning and SBOM generation
  • Classification of product and role

Integration & Automation

  • Cybersecurity risk assessment

Compliance & Support

  • Tailored legal guidance
  • Penetration testing
  • Conformity assessment guidance
  • Cybersecurity policy for OSS stewards

Enterprise

  • 3rd party due diligence "health" report
  • Customer hosted private dashboard
  • Role identification e.g. manufacturer/steward/importer/distributor
  • Product classification e.g. default/class I/class II/critical
  • Identification of relevant harmonized standards
  • Product GAP analysis
  • Risk assessment mitigation support
  • Security requirements support
  • Conformity assessment submission support
Contact Us

CRA Lifetime

Lifetime CRA services, extending beyond the CRA certify solution to provide vulnerability management and LTS upgrades throughout the product support period

Core Services

  • Binary scan of software image
  • Software bill of materials (SBOM) generation
  • CVE Vulnerability report
  • Linaro hosted private dashboard
  • Source based scan on software image with Linaro's toolchain

Advanced Analysis

  • CI/CD integration for continuous scanning and SBOM generation
  • Classification of product and role

Integration & Automation

  • Cybersecurity risk assessment

Compliance & Support

  • Tailored legal guidance
  • Penetration testing
  • Conformity assessment guidance
  • Cybersecurity policy for OSS stewards

Enterprise

  • Long term support
  • 3rd party due diligence "health" report
  • Customer hosted private dashboard
  • Role identification e.g. manufacturer/steward/importer/distributor
  • Product classification e.g. default/class I/class II/critical
  • Identification of relevant harmonized standards
  • Product GAP analysis
  • Risk assessment mitigation support
  • Security requirements support
  • Conformity assessment submission support
  • LTS support for core software components throughout the product support period
Contact Us

Not sure where to start with CRA?
Or need a custom approach?

Let's build a CRA solution that fits your business.

Contact our team and make your route to compliance faster and easier.