Cyber Resilience Act – Proposal for a regulation on cybersecurity requirements for products with digital elements
Pending legislation
The Cyber Resilience Act (CRA) is an EU regulation proposed on 15 September 2022 by the European Commission for improving cybersecurity and cyber resilience in the EU through common cybersecurity standards for products with digital elements in the EU, such as required incident reports and automatic security updates.[1] Products with digital elements mainly are hardware and software whose "intended and foreseeable use includes direct or indirect data connection to a device or network".[2]
After publication of the draft proposal, multiple open source organizations criticized CRA for creating a "chilling effect on open source software development".[3] The European Commission reached political agreement of the CRA on 1 December 2023, after a series of amendments.[4] The revised bill received relief and applause from many open source organizations, and introduced the "open source steward", a new economic concept.[5] The CRA agreement received formal approval by the European Parliament in March 2024 and still requires formal adoption by the Council before being enforced.[6] Some open-source parties like the Debian project remain critical of the proposed regulation.[7]
^"Cyber Resilience Act | Shaping Europe's digital future". digital-strategy.ec.europa.eu. 15 September 2022. Retrieved 17 May 2023.
^Cite error: The named reference briefing was invoked but never defined (see the help page).
^Cite error: The named reference crunch was invoked but never defined (see the help page).
^"Commission welcomes political agreement on Cyber Resilience Act". European Commission. 1 December 2023. Retrieved 22 March 2024.
^Cite error: The named reference listened was invoked but never defined (see the help page).
^"Cyber Resilience Act: MEPs adopt plans to boost security of digital products | News | European Parliament". www.europarl.europa.eu. 12 March 2024. Retrieved 23 March 2024.
^Cite error: The named reference debianstatement2023dec was invoked but never defined (see the help page).
and 23 Related for: Cyber Resilience Act information
The CyberResilienceAct (CRA) is an EU regulation proposed on 15 September 2022 by the European Commission for improving cybersecurity and cyber resilience...
Congressional Review Act of 1996 (US) Constitution Restoration Act of 2004/2005 CyberResilienceAct, EU, 2022 Christian Research Association Commercial Radio...
Anti-Solidarity Law Artificial Intelligence Act Corporate Sustainability Due Diligence Directive CyberResilienceAct 2024 in public domain Safeguarding National...
Magnus Hagander, and Johan Thelin (9 March 2023). "S01E01 - EU CyberResilienceAct". fossified.com (Podcast). Fossified. Event occurs at 00:53. Retrieved...
The CyberResilience Review (CRR) is an assessment method developed by the United States Department of Homeland Security (DHS). It is a voluntary examination...
WordPress, Drupal and Typo3 to address their concerns with the EU CyberResilienceAct. J and Beyond was an annual conference primarily catering to Joomla...
and other personally identifiable information. Asset (computing) Cyberresilience Common Vulnerabilities and Exposures Computer emergency response team...
working on the EU CyberResilienceAct. The letter is a plea for fairness for non-profit developers of open-source software, because the Act mostly focuses...
fortify the cybersecurity resilience of small and medium enterprises (SMEs) and enhance their capabilities in responding to cyber threats. This financial...
Security is protection from, or resilience against, potential harm (or other unwanted coercion). Beneficiaries (technically referents) of security may...
CyberPeace Foundation is an Indian nonpartisan, nonprofit organization of Cyber Security that works to build resilience against cyberattack and cybercrimes...
to celebrate the Act's 30th birthday, the CyberUp Campaign wrote an open letter to the prime minister on behalf of a number of cyber security industry...
Technology of the Government of India. It is the nodal agency to deal with cyber security incidents. It strengthens security-related defence of the Indian...
Operational collaboration is a cyberresilience framework that leverages public-private partnerships to reduce the risk of cyber threats and the impact of...
physical and cyber infrastructure. On November 16, 2018, President Trump signed into law the Cybersecurity and Infrastructure Security Agency Act of 2018,...
party is jeopardized by a cyber security lapse. The EDM Assessment is based on the structure and method of the DHS CyberResilience Review. No artifacts or...
National Defense Authorization Act for Fiscal Year 2019. Its purpose was "to develop a strategic approach to defense against cyber attacks of significant consequences"...
and strengthened by the EU Cybersecurity Act, the European Union Agency for Cybersecurity contributes to EU cyber policy, enhances the trustworthiness of...
non-profit organizations which share valuable information on cyberresilience to strengthen the cyber security of the European Power Grid. In India, the Information...
several cases these units act also as the national computer emergency response team for civilian cybersecurity threats. Military Cyber Security Unit (Një e...