To secure connected products, developers and manufacturers must use
tools and processes that are purpose built to analyze the complex
binaries found within connected devices and embedded systems.
Beyond the capabilities of traditional security tooling, dedicated
product security (software supply chain security) tools must run in
the specialized languages, systems, and deployment cycles for these
connected devices. In this talk hosted by Finite State's Jason
Ortiz, we will examine where traditional security falls short in
analyzing the composition of a device, detecting its
vulnerabilities, assessing the severity of those vulnerabilities,
prioritizing and conducting response actions. In this session, you
will learn how traditional tools can’t always see the opaque
threats that live inside connected devices, explore Software Bill
of Materials (SBOMs) and how to generate them, and discover how to
build a product security strategy that leads to more secure
products and software supply chains.
