Security expert Somos is integrating Finite State’s binary and source code analysis capabilities with SomosID, enhancing its IoT connected asset registry’s ability to deliver deeper, device-level metrics.

As regulatory requirements for IoT security continue to evolve – including NIS2, the Cyber Resilience Act (CRA) and US federal mandates – organisations are facing increasing pressure to ensure device integrity, vulnerability management and compliance. Through this partnership, SomosID and Finite State will provide end-to-end security and compliance, helping enterprises gain deeper insights into their IoT assets while securing the software supply chain.

“IoT security is no longer optional, it’s essential,” said Sri Ramachandran, chief technology officer at Somos. “Our collaboration with Finite State allows us to provide organisations with unparalleled visibility into their IoT devices as well as the software and firmware that goes into them, ensuring they meet compliance requirements and proactively mitigate security risks.”

Finite State’s binary and source code analysis and software bill of materials (SBoM) offerings will complement SomosID’s IoT asset registry, enabling enterprises to:

• Identify and mitigate vulnerabilities within IoT firmware and software components
• Gain comprehensive insights into the security posture of their connected devices
• Ensure compliance with evolving regulatory frameworks
• Strengthen supply chain security through risk assessments and continuous monitoring

“Ensuring the integrity and security of connected devices is fundamental to building trust in the IoT ecosystem,” said Matt Wyckhouse, CEO of Finite State. “Our partnership with Somos brings together powerful binary and source code analysis and asset registry capabilities, offering enterprises a comprehensive solution to address security vulnerabilities and supply chain risk at scale.”

As IoT adoption continues to grow, the need for stronger security, compliance and risk management has never been greater. SomosID and Finite State say they are committed to providing the tools and insights necessary to navigate this complex landscape and safeguard connected ecosystems. 

Somos (www.somos.com) supports more than 1400 service providers globally and manages over seven billion digital identities to enable seamless and secure communications.

Finite State (finitestate.io) provides software supply chain security for connected devices. It offers a centralised platform that combines binary and source code analysis, vulnerability management, and compliance readiness to secure the software supply chain.