As embedded devices continue to permeate critical applications, ensuring their security from the earliest stages of development has never been more essential.

This talk explores practical strategies for building ESP32-based products that are “secure by design,” with a focus on integrating Software Bill of Materials (SBOM) practices into the firmware lifecycle. Attendees will learn how SBOM security analysis tools can uncover hidden vulnerabilities, strengthen supply-chain trust, and streamline compliance efforts.

Using real-world examples from ESP32 firmware development, the session demonstrates how developers can incorporate automated analysis, dependency tracking, and continuous security validation to deliver robust and resilient embedded systems.