CRA Framework Standard Development (Requested Standardization Deliverable no. 1 in the CRA SR)
Horizontal standards for security requirements
As co-editor in CEN/CLC/JTC13/WG9/PT1, I contribute to the development of the first deliverable under the European Commission Cyber Resilience Act (CRA) Standardization Request, titled “Cybersecurity Requirements for Products with Digital Elements – General Principles for Cyber Resilience” (‘’the Framework Standard’’).
The Framework Standard serves as a horizontal standard, providing a framework of all elements which will be addressed by the vertical standards, which shall achieve coherence with it.
It also sets the specifications for the design, development, and production of products with digital, ensuring they achieve an appropriate level of cybersecurity based on risk assessment.
By setting a common foundation, the Framework Standard, facilitates consistency, implementability and a harmonized approach across the CRA standards.
