Direct Insight will be hosting a live, online training workshop, ‘The EU Cyber Resilience Act: Practical Preparation for Embedded Engineers’, where they will discuss what it means for embedded developers and what they need to do to move towards compliance.
The EU Cyber Resilience Act (CRA), which will become law on December 11th 2024, extends the CE marking scheme, by mandating that all products with digital elements that can be connected to a device or network must adhere to a strict set of rules in their design, documentation and support before claiming conformance.
“The EU Cyber Resilience Act will have a significant impact on embedded developers – who are generally unfamiliar with the world of CVEs (Common Vulnerabilities and Exposures) and SBOMs (software bill of materials), and unprepared to implement requirements like encryption, secure boot and OTA (over-the-air) updating. All products shipped in the EU must comply by December 2027, so it’s time to start planning – and in that respect, knowledge is power,” said William White, Co-Founder and Technical Director, Direct Insight.
Presented by CRA subject matter expert, David Pashley, Co-Founder and Managing Director, Direct Insight, the upcoming webinar on how to prepare for the CRA in practical terms will comprise of a 40-minute talk, followed by a 15-minute Q&A session, discussing the following topics:
- Scope, timing and enforceability
- Threat modelling and risk assessment
- Shipping a product without ‘known exploitable vulnerabilities’
- Firmware integrity: secure boot
- Product lifecycles and updates
- Documentation and conformity
Primarily aimed at embedded systems engineers and their managers, the workshop will also be relevant to senior managers and business owners who are actively contemplating and planning for compliance with the CRA, as well as other similar or complementary regulations and standards.
There’s plenty of other editorial on our sister site, Electronic Specifier! Or you can always join in the conversation by commenting below or visiting our LinkedIn page.