The CRA requires manufacturers to understand and document cybersecurity risks in their connected products, but how do you actually do that in practice? This session walks through a practical, evidence-based threat modelling process that aligns directly with the CRA’s risk-assessment and documentation requirements. You’ll learn how to use Data Flow Diagrams (DFDs) to map system context, apply STRIDE to identify threats, and connect them to real attacker techniques via MITRE, supported by the CRACoWi Wizard to help you gather the right information and demonstrate CRA readiness.
Attendees will gain a hands-on, repeatable approach they can adapt to their own environments, bridging the gap between “paper compliance” and practical, testable security. Ideal for engineers, product security teams, managers, and anyone involved in designing, building, or securing connected products.
REGISTER NOW