Blog articles, webinars, and podcasts you need to gain a deeper understanding of how to keep your devices secure during their lifecycle.
Lyon, September 2024 – The Embedded Kit announces the release of the latest version of CVE Scan, its advanced security vulnerability detection and monitoring tool, at SIDO Lyon 2024. The highlight of this release is the introduction of a new interactive web interface designed to enhance decision-making with visual management of vulnerability lifecycles, detailed documentation, and report generation.
Embedded systems are becoming crucial components across various industries, but they face numerous challenges when it comes to security and long-term maintenance. In this blog, based on a webinar with STMicroelectronics and Witekio, we’ll explore the main obstacles embedded devices face and discuss the regulatory frameworks, compliance requirements, and best practices to keep your embedded systems secure for the long term.
The Cyber Resilience Act, also known as the “CRA”, is a regulation from the European Parliament and Council.
Your product security documentation is crucial for compliance with the Cyber Resilience Act. It must comprehensively cover all security developments, assessments, vulnerabilities, updates and patches identified or implemented throughout the product's lifecycle.
The Cyber Resilience Act now requires manufacturers to regularly conduct security risk assessments of their products to mitigate cybersecurity risks. Discover what this entails and how to conduct one effectively for your embedded system.
Equipment manufacturers are required by the Cyber Resilience Act (CRA) to diligently manage and address the security vulnerabilities in their products. Here is a quick overview of these requirements.
The Cyber Resilience Act (CRA) requires device makers to integrate security from the conception phase of their product as any product launched on the market should not have any known exploitable vulnerability.
Who needs to comply with this regulation? Are your products affected? We provide a comprehensive list of rules outlining which products must adhere to the Cyber Resilience Act (CRA).
The Cyber Resilience Act (CRA) classifies products with digital components into three distinct categories: default, important, and critical products. This categorization aims to adapt security measures based on the level of risk and potential impact each product category presents.