| Item |
Status |
| Secure Boot is implemented and tested |
|
|
| Firmware integrity validation upon startup |
|
|
| Only necessary device drivers and services enabled |
|
|
| All default credentials have been removed or changed |
|
|
| Secure communication protocols are used (e.g., TLS/SSL) |
|
|
| Unnecessary network ports/services are closed/disabled |
|
|
| Firmware update process is authenticated and verified |
|
|
| Rollback protection implemented |
|
|
| Sensitive data is encrypted at rest and in transit |
|
|
| Debugging interfaces are disabled or protected |
|
|
| No hardcoded credentials or secrets in firmware |
|
|
| Firmware cryptographically signed |
|
|
| Logging and audit mechanisms in place |
|
|
| Error handling does not leak sensitive information |
|
|
| Resource (memory, buffer) management is secure |
|
|
| Input validation and sanitization performed |
|
|
| Third-party components/libraries up to date and reviewed |
|
|
| Vulnerability assessments and penetration testing conducted |
|
|