During the workshop, we will cover the following key topics:

• Some Practical Concerns

• Retrofitting Security: Adding robust security features (such as secure boot, hardware-backed keys, proper encryption) to existing hardware and software architectures.

• Secure Update Mechanisms: Addressing weak or unreliable firmware/software update systems common in older connected products.

• Secure Key Management: Challenges in generating, storing, and managing cryptographic keys, especially in legacy designs without secure hardware elements (like TPMs or Secure Elements).

• Addressing Design Choices: How to close security gaps in products designed before cybersecurity became a key priority.

• Component Vulnerability Management: Managing vulnerabilities in third-party components such as libraries, operating systems, and chipsets.

• Security Testing: Implementing embedded security testing to identify flaws before releasing or updating products.