Merge pull request #242029 from ochimo/velma_docs

Initial draft of Defender for IoT Firmware analysis documentation

Author: v-dirichards

articles/defender-for-iot/device-builders/TOC.yml

@@ -30,6 +30,8 @@
     href: tutorial-investigate-security-recommendations.md
   - name: Investigate security alerts
     href: tutorial-investigate-security-alerts.md
+  - name: Analyze an IoT/OT firmware image
+    href: tutorial-analyze-firmware.md    
 - name: Concepts
   items:
   - name: Agent portfolio overview and OS support 
@@ -60,6 +62,9 @@
       href: concept-customizable-security-alerts.md
   - name: Security recommendations for IoT Hub
     href: concept-recommendations.md
+  - name: Firmware analysis (preview)
+    displayName: IoT, OT, firmware, analysis
+    href: overview-firmware-analysis.md
 - name: How-to guides
   items:
   - name: Install Defender for IoT micro agent for Edge

articles/defender-for-iot/device-builders/index.yml

@@ -41,6 +41,8 @@ landingContent:
             url: concept-recommendations.md
           - text: Event aggregation
             url: concept-event-aggregation.md
+          - text: Firmware analysis (preview)
+            url: overview-firmware-analysis.md
   - title: How-to
     linkLists:
       - linkListType: how-to-guide

articles/defender-for-iot/device-builders/media/tutorial-firmware-analysis/defender-portal.png

@@ -0,0 +1,39 @@
+---
+title: Firmware analysis for device builders - Microsoft Defender for IoT
+description: Learn how Microsoft Defender for IoT's firmware analysis helps device builders to market and deploy highly secure IoT/OT devices.
+ms.topic: conceptual
+ms.date: 06/15/2023
+#Customer intent: As a device builder, I want to understand how firmware analysis can help secure my IoT/OT devices and products.
+---
+
+# Firmware analysis for device builders
+
+Just like computers have operating systems, IoT devices have firmware, and it's the firmware that runs and controls IoT devices. For IoT device builders, security is a near-universal concern as IoT devices have traditionally lacked basic security measures.
+
+For example, IoT attack vectors typically use easily exploitable--but easily correctable--weaknesses such as hardcoded user accounts, outdated and vulnerable open-source packages, or a manufacturer's private cryptographic signing key. 
+
+Use Microsoft Defender for IoT's firmware analysis to identify embedded security threats, vulnerabilities, and common weaknesses that may be otherwise undetectable.
+
+> [!NOTE]
+> The Defender for IoT **Firmware analysis** page is in PREVIEW. The [Azure Preview Supplemental Terms](https://azure.microsoft.com/support/legal/preview-supplemental-terms/) include other legal terms that apply to Azure features that are in beta, preview, or otherwise not yet released into general availability.
+>
+
+## How to be sure your firmware is secure
+
+Defender for IoT can analyze your firmware for common weaknesses and vulnerabilities, and provide insight into your firmware security. This analysis is useful whether you build the firmware in-house or receive firmware from your supply chain.
+
+- **Software bill of materials (SBOM)**: Receive a detailed listing of open-source packages used during the firmware's build process. See the package version and what license governs the use of the open-source package.
+
+- **CVE analysis**: See which firmware components have publicly known security vulnerabilities and exposures.
+
+- **Binary hardening analysis**: Identify binaries that haven't enabled specific security flags during compilation like buffer overflow protection, position independent executables, and more common hardening techniques.
+
+- **SSL certificate analysis**: Reveal expired and revoked TLS/SSL certificates.
+
+- **Public and private key analysis**: Verify that the public and private cryptographic keys discovered in the firmware are necessary and not accidental.
+
+- **Password hash extraction**: Ensure that user account password hashes use secure cryptographic algorithms.  
+
+## Next steps
+
+- [Analyze a firmware image](tutorial-analyze-firmware.md)

articles/defender-for-iot/device-builders/media/tutorial-firmware-analysis/firmware-details.png

@@ -15,6 +15,17 @@ Noted features are in PREVIEW. The [Azure Preview Supplemental Terms](https://az
 
 For more information, see [Upgrade the Microsoft Defender for IoT micro agent](upgrade-micro-agent.md).
 
+## July 2023
+
+**Firmware analysis public preview announcement**
+
+Microsoft Defender for IoT Firmware analysis is now available in public preview. Defender for IoT can analyze your device firmware for common weaknesses and vulnerabilities, and provide insight into your firmware security. This analysis is useful whether you build the firmware in-house or receive firmware from your supply chain. 
+
+For more information, see [Firmware analysis for device builders](overview-firmware-analysis.md).
+
+:::image type="content" source="media/tutorial-firmware-analysis/overview.png" alt-text="Screenshot that shows clicking view results button for a detailed analysis of the firmware image.":::
+
+
 ## December 2022
 
 **Version 4.6.2**: