Sponsors and Exhibitors 2026

Qualcomm is enabling a world where everyone and everything can be intelligently connected. Our one technology roadmap allows us to efficiently scale the technologies that launched the mobile revolution – including advanced connectivity, high-performance, low-power compute, on-device intelligence and more – to the next generation of connected smart devices across industries. Innovations from Qualcomm and our family of Snapdragon platforms will help enable cloud-edge convergence, transform industries, accelerate the digital economy, and revolutionize how we experience the world, for the greater good. Qualcomm Incorporated includes our licensing business, QTL, and the vast majority of our patent portfolio. Qualcomm Technologies, Inc., a subsidiary of Qualcomm Incorporated, operates, along with its subsidiaries, substantially all of our engineering, research and development functions, and substantially all of our products and services businesses, including our QCT semiconductor business. Snapdragon and Qualcomm branded products are products of Qualcomm Technologies, Inc. and/or its subsidiaries. Qualcomm patented technologies are licensed by Qualcomm Incorporated.

Brightsight, an SGS company, is the leading independent laboratory for connected products security evaluations, recognized by more than 50 certification schemes worldwide. With over 40 years’ expertise, Brightsight conducts impartial evaluations and operates as a licensed Certification Body. Leveraging its integrated one-stop services and the global reach of SGS, Brightsight helps clients navigate evolving regulatory demands and provides predictable and trusted evaluations in a seamless certification journey.

GlobalPlatform is a global, member-driven standards organization building the foundation for a secure and interoperable digital future. We develop specifications for Secure Elements, Trusted Execution Environments and other isolation technologies that are widely deployed today to protect critical services across banking, mobile, automotive, identity documents, and IoT. Through the SESIP evaluation methodology and PSA Certified scheme, we help governments, organizations, and industries deliver secure devices and services with confidence, enabling manufacturers to demonstrate conformance to cybersecurity regulations such as the Cyber Resilience Act (CRA) and fostering a digital ecosystem built on privacy, security, and trust.

TÜV Informationstechnik – based in Essen, Germany – offers various Cyber Security services that are oriented towards your specific requirements: from one-time projects to regular tests, and certifications. With our problem-solving approaches, you are optimally prepared to identify vulnerabilities, eliminate them sustainably, and continuously increase your security level. Furthermore, TÜViT is one of the world’s leading testing service providers for Common Criteria (CC) and is authorized to perform evaluations according to a total of 5 different country schemes. With our 60 licensed evaluators, we have successfully completed over 700 evaluation projects according to CC (from EAL1 to EAL7).

TÜV SÜD is a trusted partner of choice for safety, security and sustainability solutions. Our experts are specialists in cybersecurity testing, certification, training, audit and assessment. From cyber risk assessments and cybersecurity training, to carrying out security certification projects, our industry experts have successfully helped companies and their products to improve the cybersecurity level. With a structured approach to cybersecurity services developed from many years of experience, domain specific know-how and regulatory expertise, TÜV SÜD offers support to companies across a range of sectors. By helping organisations with compliance to global security standards, TÜV SÜD has ensured our clients have access to markets across the world by identifying exact flaws and advising a remedial action plan to safeguard the system.

Winbond Electronics Corporation (“Winbond”) was established in September 1987 and listed on Taiwan Stock Exchange in 1995, and is headquartered in Central Taiwan Science Park (CTSP), Taichung, Taiwan and operates two 12-inch highly intelligent and automated fabs located in CTSP and South Taiwan Science Park (STSP)’s Kaohsiung Science Park. Winbond stands out as one of the few companies worldwide with proprietary products and technology in both memory and logic integrated circuits. From product design, research and development, and wafer fabrication to the marketing of brand name products, Winbond endeavors to provide its global clientele with total integrated circuits solutions. Winbond’s major product lines include Code Storage Flash Memory, TrustME® Secure Flash, Customized Memory Solution (CMS), and various Logic IC solutions. With the introduction of the TrustME® Security Solution, Winbond is dedicated to providing high-quality secure external storage for code and data in SoC- and processor-based platforms. This includes Secure Flash designed to strengthen platform firmware protection and update integrity, supporting security-by-design expectations that are increasingly central for products placed on the EU market. Winbond Secure Flash helps system designers implement core cybersecurity controls that map well to emerging EU obligations, especially: Cyber Resilience Act (CRA): supporting security features that improve firmware integrity, help reduce exposure to known vulnerabilities, and enable more robust secure update mechanisms over a product’s lifecycle, and Radio Equipment Directive (RED) cybersecurity requirements: supporting connected radio products with stronger protection against unauthorized firmware/software changes, helping reduce risks to networks, users, and personal data. In practice, Winbond’s Secure Flash approach targets key engineering pain points: trusted boot, tamper resistance for external code storage, and secure field updates with PQC signatures, while maintaining the performance required by modern embedded systems. Winbond has set up operations and distributor networks in the USA, China, Japan, Germany, India, Korea, Hong Kong, Singapore and Israel to serve clients better and expand the depth and breadth of product sales. With regard to quality, Winbond pursues excellence and zero defects, and is certified in a number of quality and environmental safety management systems. It is also the first memory manufacturer in Taiwan to obtain the ISO 26262 certification, which is the highest standard for automotive functional safety.

Jones Day has a history of 130 years and a culture of client service and professionalism based on explicit shared values. These values include providing pro bono legal services, building diversity in our profession, and supporting outreach efforts around the world.

Jones Day has a long history of, and commitment to, pro bono work, public service, and community involvement in all of our locations around the world. Because of that commitment, pro bono and public service matters undertaken by Jones Day are provided the same level of attention and professional dedication that we provide to matters undertaken on behalf of paying clients.

At Jones Day you’ll see lawyers from diverse backgrounds leading client engagements, practice groups, and offices around the world. We are committed to recruiting, retaining and advancing highly qualified lawyers from diverse backgrounds. In all circumstances, we make employment decisions based on the merits. We do not provide preferences based on race, gender or any other protected category.

The Jones Day Foundation, established in 1987, is a nonprofit organization funded by Jones Day’s lawyers and staff. The Foundation’s mission is to financially support efforts that include promoting the rule of law in developing countries, fostering innovation in academics, medicine and the arts, improving the living conditions and economic opportunities for people in impoverished settings (particularly children and women), and providing support and comfort to people suffering from natural and other disasters around the world.

As a leader in testing, certification and inspection industry, we ensure safety, security and sustainability in the three areas of life on the road, at work and at home.

SafeShark is the only dedicated expert in the field of RED, CRA and PSTI compliance. We are the unparalleled specialists, offering unmatched knowledge and proficiency in this critical area combined with streamlined automated product testing. We quickly take care of your device’s compliance journey and we prove your device is ready to enter the UK or EU market.

Bureau Veritas Cybersecurity is the dedicated cybersecurity part of Bureau Veritas, a global leader in testing, inspection and certification with nearly two centuries of heritage in building trust across markets worldwide. Drawing on the Group’s deep expertise and global footprint, Bureau Veritas Cybersecurity helps organizations and technology providers manage risk, demonstrate compliance and strengthen resilience in the face of evolving digital threats. As a recognized market leader in industrial products certification and operational technology security, Bureau Veritas is at the forefront of implementing the IEC 62443 series of international standards the major standard for cybersecurity in industrial automation and control systems. Our services cover full lifecycle support from gap assessments and compliance advisory to independent third-party certification and technical testing, enabling manufacturers and system integrators to demonstrate conformity to cyber-security requirements across global supply chains. In an era where regulatory frameworks like the EU’s Cybersecurity Act and the Cyber Resilience Act are elevating the importance of secure products and trusted certification, Bureau Veritas Cybersecurity empowers clients to meet market expectations, mitigate operational risk and accelerate market access with confidence and integrity. We support companies to make cybersecurity as a competitive market advantage.

C2A Security is the only AI-based, context-driven product security orchestration platform that addresses the specific needs of software-defined products and cyber-physical systems in regulated sectors. Founded in 2016, C2A Security’s customers and technology partners include top-tier global players as BMW Group, Elekta, Daimler Truck AG, NVIDIA, Siemens, Orcanos, Marelli, NTT Data, and Deloitte. A CLEPA Innovation Award recipient for its industry-pioneering DevSecOps platform, C2A Security empowers companies to bridge the visibility gap between security and engineering teams towards a unified security posture. By leveraging AI-driven contextual analysis, advanced security automation, and automated compliance reporting, C2A Security transforms product security to shorten software release times and decrease costs in the healthcare, industrial, robotics, automotive, and other Cyber-Physical Systems. C2A Security was founded by NDS/Cisco veteran Michael Dick, with its global headquarters in Jerusalem, Israel.

CyberWhiz is an IoT Cyber Security company, developing technologies for each three pillars of IoT, which are Edge·Mobile·Cloud. With the help of CyberWhiz Embedded, we can secure any edge device for any regulation like RED DA and CRA. Secondly, as CRA is requiring to secure “product with digital elements” we are securing the mobile applications(digital elements) with the help of our CyberWhiz Mobile. Thirdly, again as CRA is asking for “security logging and monitoring” we are able to monitor all security related activities from our CyberWhiz Defence Center, during the lifecycle of the product. We are supporting all these 3 technologies with our three services, which are Red-Blue-Purple Team Services. With the help of our Red Team, we are able to make end-to-end IoT penetration tests starting form embedded systems, continuing with RF signals and mobile application reverse engineering, and finally ending up in cloud. Because CRA is not allowing to go into the serial production “without any known vulnerability”. Purple Team is supporting any regulation consultancy and we are filling all Risk Assessment and E.Info documentations on behalf of you with our tests and analysis. Blue Team is supporting your desing teams with hands on support in your embedded securiy, mobile application security and cloud security Secure by Design processes. So, to sum up, we are a One Stop Shop for IoT Cyber Security.

Cytal offers a class-leading fuzz testing solution called ProtoCrawler designed to help you discover, analyse and resolve security vulnerabilities, weaknesses and defects in products and systems. as part of your continuous testing and assurance processes.

We enable product security teams – the guardians of the connected world – to protect the devices we rely on every day through market-leading software threat, vulnerability, and risk management. Finite State is the leading provider of product cyber security solutions for connected devices and embedded systems, including IoT, medical devices, and OT/ICS.

FOSSA is an application security and compliance platform built to help organizations ship trusted software. The company supports thousands of global customers in automating SBOM (software bill of materials) management, preparing for emerging regulatory requirements such as the Cyber Resilience Act, and proactively managing open source vulnerabilities and license compliance. Since its founding in 2015, FOSSA has been downloaded nearly two million times and has conducted over 100 million scans of open source software.

Keysight Device Security (KDS), part of Keysight Technologies, has over two decades of experience in device security research and testing. Specializing in side channel analysis and fault injection, Riscure’s tools and expert services help developers safeguard products against both physical and logical threats. Through proven methodologies and cutting-edge solutions, Keysight enhances security implementations across industries, ensuring robust defenses for next-generation semiconductors, embedded systems, and devices.

ONEKEY is Europe’s leading specialist in Product Cybersecurity & Compliance Management and part of PwC Germany’s investment portfolio. Our unique automated Product Cybersecurity & Compliance Platform (PCCP) combines AI-driven analysis with expert consulting to enhance cybersecurity from product design to end-of-life. Our AI technology detects critical vulnerabilities and compliance violations in firmware within minutes—without needing source code, a device, or network access. The platform generates software bill of materials (SBOM) for proactive supply chain auditing, while Digital Cyber Twins enable 24/7 cybersecurity monitoring post-release.The patent-pending Compliance Wizard™ supports the EU Cyber Resilience Act (CRA), IEC 62443-4-2, ETSI EN 303 645, UNECE R 155, and more. Our Product Security Incident Response Team (PSIRT) benefits from automatic vulnerability prioritization, reducing remediation time. Leading global companies across Asia, Europe, and the Americas trust ONEKEY’s platform and cybersecurity expertise for robust product security and compliance.

ORBIK works side by side with manufacturers and integrators to ensure industrial product cybersecurity compliance. With the increasing demands introduced by the Cyber Resilience Act (CRA) and other regulations, we support companies throughout the entire lifecycle making cybersecurity compliance easier. ORBIK provides testing and compliance services with a strong focus on IEC 62443-4-2, RED DA (18031), CRA, and related standards. This benefits from an accredited laboratory based on ISO17025 that is specialised in different industrial sectors, covering from critical to default categories. Services are complemented with product offerings. ORBIK is the first technology-based cooperative startup created in the Basque Country, born from the alliance between MONDRAGON and IKERLAN. One of our goals is to create jobs and offer career opportunities for young talent.

Red Alert Labs is a pioneering IoT cybersecurity provider dedicated to building trust in the Internet of Things. We specialize in IoT security assurance and certification services, enabling manufacturers and customers to make informed decisions when buying or selling IoT products. Our comprehensive offerings span the entire IoT life cycle, from design to deployment, and include risk management, consulting, audits, and certifications. As the creators of the world’s first IoT security and certification software platform, we combine cutting-edge automation with a unique, independent security lab to tackle the technical and commercial challenges of IoT. Our innovative framework covers the full IoT ecosystem, from chip to cloud, delivering tailored security solutions based on customer maturity and business context. Whether through standard certifications or our specialized IoT security labels, we help our partners ensure compliance, manage risk, and stay ahead in the rapidly evolving IoT landscape.

We help creators of intelligent connected devices to design, implement, and operate their systems with a sustainable security level. We strongly believe that security is a combination of hardware, software and procedures. Thanks to our proven knowledge in the field of cryptography, cybersecurity, and embedded systems, we can facilitate the protection of intelligent connected devices for medical, industrial, automotive and consumer electronics. We support device manufacturers in reaching their security and business targets by offering state-of-the-art consultancy and training. In addition, we have launched the ARIANNA Platform, a cloud platform designed to help Device Manufacturers implement an efficient Vulnerability Management Process as requested by CRA, RED and major regulation and standards. Features include: device model creation (HBOM + SBOM), continuous vulnerability monitoring, exploitable vulnerabilities detection, vulnerability management, and reporting for regulatory bodies.

BiometricUpdate.com is the leading source for breaking news, analysis, and research on the global biometrics market. We deliver exclusive daily coverage via our website and newsletter, providing insights into fingerprint, voice, iris, and facial recognition, as well as emerging technologies like DNA analysis and gait recognition.Our reporting spans biometric and non-biometric identification methods, including behavioral biometrics, identity document verification, and telephone forensics. We cover key applications in national security, mobile identity, and border control, with a strong focus on UN Sustainable Development Goal 16.9 for universal digital identification and the ID4Africa movement. With a global audience of 3 million readers annually, our content serves governments, law enforcement agencies, financial institutions, OEMs, service providers, system integrators, and industry professionals. BiometricUpdate.com remains the go-to resource for staying informed on the latest developments in biometric technology and digital identity solutions.

The Common Criteria Users Forum (CCUF) was founded in 2012 and is a community based around those using the Common Criteria and ISO/IEC 15408 standards. The Common Criteria Users’ Forum mission is to provide a voice and communications channel between the CC community and the CC organizational committees, CC evaluation schemes, and policy makers. To join, go to http://www.ccusersforum.org/.

The Cryptographic Module User Forum (CMUF) mission is to provide a voice and communications channel between the community of UNCLASSIFIED cryptographic module (CM) and UNCLASSIFIED cryptographic algorithm developers, vendors, consultants, test labs and other interested parties, and the various national, international, and multi-lateral organizational committees, schemes, and policy makers. To Join the CMUF contact any CMUF Steering Committee member.

The European Cyber Security Organisation (ECSO) ASBL is a fully self-financed non-for-profit organisation under the Belgian law, established in June 2016.

ECSO represents the contractual counterpart to the European Commission for the implementation of the Cyber Security contractual Public-Private Partnership (cPPP). ECSO members include a wide variety of stakeholders such as large companies, SMEs and Start-ups, research centres, universities, end-users, operators, clusters and association as well as European Member State’s local, regional and national administrations, countries part of the European Economic Area (EEA) and the European Free Trade Association (EFTA) and H2020 associated countries…

The EU Common Criteria Information Sharing and Analysis Centre (EUCC ISAC) is an international non-profit association committed to fostering collaboration and harmonization in cybersecurity certification across Europe and beyond. By gathering public and private stakeholders, its mission is to build trust and interoperability within the EUCC scheme ecosystem, fostering a robust market for certified ICT products that address evolving technological challenges and threat landscapes. The ISAC provides the European Commission, EU Member States, and ENISA with key interpretation and methodologies update to ensure consistent and effective implementation of the EUCC scheme. The EUCC ISAC contributes to maintaining the state of the art through the provision of attack quotations and the development of an up-to-date attack catalogue.

With over 25 years of experience, Eurosmart gathers technological experts in the field of Digital Security. This Brussels-based association advocates for a high security level in digital interactions.

Members of Eurosmart are designers or manufacturers of secure elements, semiconductors, smart cards, systems on chip, High Security Hardware and terminals; biometric technology providers; system integrators; secure software and application developers and issuers. Members are also involved in security evaluation as laboratories, consulting companies, research organisations and associations.