Summary
The demand for more advanced features from end-users is driving increased complexity in software supply chains across many industries. Supply chains involving a complex collection of downstream vendors and open-source libraries will inevitably bring a number of undisclosed vulnerabilities which will be difficult to patch or resolve once devices are deployed. As OEMs and device manufacturers grapple with the realities of devastating cyberattacks and costly product recalls, downstream suppliers will be held responsible for their role in security incidents.
With growing device complexity and regulations quickly being established to enforce cybersecurity measures, OEMs and device manufacturers are challenged to adapt. Embedded software development procedures will have to undergo a generational shift with security as a prerequisite, rather than an afterthought. Relations between software suppliers, device manufacturers and OEMs will need to be more open and collaborative to ensure that security is baked into the software development lifecycle from the planning phase itself, with stringent checks implanted at every stage. Automation in security testing will be crucial as product development timelines shrink and talent shortages get more pronounced. Security automation will also play a key role in reducing the lead time between the discovery of a vulnerability and the issuing of patches. BlackBerry® Jarvis® is a unique match to the needs of the embedded software industry, allowing developers to gain deep visibility into embedded software while automating the important steps in the process of binary scanning.
Download the report to learn about:
- The state of embedded security, including notable attacks of the past few years
- Current challenges in embedded cybersecurity
- The growing interest in cybersecurity from regulators and governments
- Future developments and evolving expectations
- How BlackBerry Jarvis 2.0 exposes vulnerabilities within embedded systems across the value chain