Skip to main content
Share via Share via Share via Copy link

The EU Cyber Resilience Act (CRA)

01 November 2024

The Cyber Resilience Act has recently been adopted by the Council of the EU, marking a significant advancement in cybersecurity measures for digital products. This regulation introduces essential cybersecurity requirements specifically targeting connected devices, including home appliances like cameras, fridges, TVs, and even toys. 

The new regulation aims to fill the gaps, clarify the links, and make the existing cyber security legislative framework more coherent. Its primary goal is to ensure that these products are secure before they enter the market, ultimately enhancing consumer safety.

One of the key aspects of the Cyber Resilience Act is the establishment of EU-wide cybersecurity standards for both hardware and software design and production. This initiative aims to create a coherent legislative framework across all EU member states, addressing existing gaps in cybersecurity regulations. 

As part of compliance, products will display a CE marking, which signifies that they meet the necessary cybersecurity requirements. This marking not only helps consumers identify products with robust cybersecurity features but also empowers them to make informed choices when selecting digital devices.

Implementation 

The act was published October 10, 2024. It will take effect 20 days after its publication, with full implementation occurring 36 months later. This timeline allows for manufacturers and developers to adapt to the new regulations, ensuring that all products connected to devices or networks adhere to these demanding cybersecurity standards, with a few exceptions noted in the legislation. Overall, the Cyber Resilience Act represents a vital step towards enhancing the security of digital products and protecting consumers across Europe.

Concluding remarks

The Cyber Resilience Act is a pivotal development in the world of cybersecurity for digital products within the EU. By establishing comprehensive standards and requiring compliance through clear labelling, the act not only enhances consumer safety but also fosters trust in connected devices. As manufacturers prepare for the upcoming changes, consumers can look forward to a marketplace where security is prioritized, ultimately leading to a safer digital environment. The successful implementation of this regulation will be crucial in addressing the evolving threats in the cyber landscape, ensuring that both consumers and businesses can navigate the digital world with greater confidence.

For further information contact Jeanne Kelly or Raymond Sherry.

Key contact

Key contact

Jeanne Kelly

Partner

jeanne.kelly@brownejacobson.com

+353 (85) 846 3955

View profile
Can we help you? Contact Jeanne

Raymond Sherry

Associate

raymond.sherry@brownejacobson.com

+35315743916

View Profile
Can we help you? Contact Raymond

You may be interested in...