The Cyber Resilience Act (CRA) is a proposal for a regulation of the European Union that aims to improve the cyber security of products, especially in terms of hardware and software with digital elements. In response to growing cyber threats, CRA is committed to enhancing product security and ensuring users have access to relevant cybersecurity information.
The main objectives and provisions of the CRA
- Improving the security of digital products: The CRA aims to establish horizontal cybersecurity requirements that will cover the entire lifecycle of a product. Manufacturers will be required to prioritize safety issues from the design phase through production, distribution and disposal.
- Access to safety information: Users will be guaranteed access to detailed information on the cybersecurity of products, enabling them to use digital technologies wisely and take appropriate protective measures.
- Consistent security framework: The regulation aims to create a coherent framework for cybersecurity in the EU, which will contribute to greater security transparency and protection for both businesses and consumers.
- Support for a Digital Europe: The CRA is a key component of the Digital Europe Programme for 2023-2024, which focuses on strengthening cybersecurity in Europe and preparing the region for the digital challenges of the 21st century.
BSP's involvement in shaping the CRA
The Business & Science Poland actively participated in consultations on the shape of the CRA, focusing on the timeliness of verification of attacks and the budget for the development and implementation of cybersecurity technologies until 2027. The organisation supported initiatives to strengthen Europe's cyber system and stressed the need for effective safeguards against threats.
Summary
The Cyber Resilience Act (CRA) represents an important step towards increasing the security of digital products in the European market. The adoption of this regulation will help to increase resilience to cyber threats and protect businesses and consumers from the effects of cyber attacks. The CRA plays a key role in delivering the EU's digital strategy, providing a coherent security framework and supporting innovation in the digital sector.