2024年2月22日 · Two important pieces of EU legislation that aim to enhance the cybersecurity of products and services in the digital single market: the NIS2 Directive and the Cyber Resilience Act (CRA). Both regulations aim to achieve a high common level of cybersecurity across the EU by imposing security requirements on various entities and products with ...

DORA, NIS 2, and CRA represent a significant step forward for EU cybersecurity. They create a comprehensive framework that addresses different aspects of cybersecurity, ultimately protecting businesses, critical infrastructure, and citizens from cyber threats.

The Cyber Resilience Act (CRA) aims to safeguard consumers and businesses buying software or hardware products with a digital component. The Cyber Resilience Act addresses the inadequate level of cybersecurity in many products, and the lack of …

2024年10月22日 · Cyber Reslience Act (CRA) What is it: The Cyber Resilience Act (CRA) applies security requirements for hardware and software products with a digital element. When will it apply: Products within scope of CRA must adhere to its requirements by ~2027.

2025年2月5日 · The NIS2 Directive sets forth risk management measures and incident reporting for essential and important organizations operating in specific sectors of the EU marketplace, while the CRA establishes compliance requirements for the developers of digital products through mandatory cybersecurity risk assessments, security updates, CE markings and ...

Among the legislative initiatives proposed or enforced, the Network and Information Security (NIS2) directive and the Cyber Resilience Act (CRA) hold particular importance for entrepreneurs and organizations operating in the EU. These initiatives aim to strengthen cybersecurity practices and enhance resilience across sectors.

2022年11月17日 · 2022年9月15日，欧盟委员会发布网络安全法规提案《网络弹性法案》（Cyber Resilience Act，CRA），旨在加强欧盟数字产品的网络安全，整合现有网络安全监管框架。《网络弹性法案》对包括软件在内的数字产品提出了大量网络安全要求。

2023年3月29日 · We outline how the CRA proposal is designed to facilitate the compliance of essential and important entities with the complex due diligence requirements set forth in the NIS 2 Directive, and to contribute towards the comparability …

2025年1月24日 · DORA (Digital Operational Resilience Act), NIS2 (Network and Information Systems directive) and CRA (Cyber-Resilience Act) are part of the complex European cybersecurity regulations recently developed, complementing other obligations derived from the GDPR (General Data Protection Regulation), telecommunications sector regulations, as well as ...

The essential cybersecurity requirements set out in the Cyber Resilience Act (CRA) are designed to ensure an adequate security protection for products with digital elements used by European citizens, business and critical infrastructures. The CRA and the standards underpinning its implementation, will create synergies with the EU Cybersecurity Act.