• Risks: Driver exploits, misconfigurations, and lack of patching.
• Controls: Signed drivers, strict patch management, systematic code reviews.

Note: BSPs are often overlooked but form a critical bridge between HW and OS.