The Commission’s proposal for a new Cyber Resilience Act (CRA) , announced by President Ursula von der Leyen in September 2021 during her State of the European Union address, and building on the 2020 EU Cybersecurity Strategy and the 2020 EU Security Union Strategy, will ensure that digital products, such as wireless and wired products and software, are more secure for consumers across the EU: in addition to increasing the responsibility of manufacturers by obliging them to provide security support and software updates to address identified vulnerabilities, it will enable consumers to have sufficient information about the cybersecurity of the products they buy and use.

2/3 of cyber attacks are related to vulnerabilities, 60% of products placed on the market contain known vulnerabilities. The Act would see inadequate security features become a thing of the past with the introduction of mandatory cybersecurity requirements for manufacturers and retailers of such products, with this protection extending throughout the product lifecycle.

By introducing cybersecurity by design, the Cyber Resilience Act will help protect Europe's economy and our collective security, as well as to raise cybersecurity awareness of European consumers.

Speakers:

• Christiane KIRKETERP DE VIRON, HoU Cybersecurity & Digital Privacy Policy
• Raluca Stefanuc, Policy Officer, Cybersecurity & Digital Privacy Policy Unit
• Benjamin Boegel, Policy Officer, Cybersecurity & Digital Privacy Policy Unit
• Maika Fohrenbach, Policy Officer, Cybersecurity & Digital Privacy Policy Unit