In the trilogue negotiations on the Cyber Resilience Act, the EU Commission, European Parliament and the Council of the European Union reached an agreement.
Susanne Dehmel, member of the Bitkom management, explains: “The Cyber Resilience Act is unique in the world and a milestone on the way to strengthening cybersecurity in Europe. With uniform standards for products with digital elements, such as security by design, it can create significantly more security for consumers. Companies benefit, among other things, from standardizing reporting deadlines for vulnerabilities.
New act – new obligations
However, they also face a lot of additional personnel and costs, both when adapting the products and the internal processes to the new specifications. We consider the planned transition periods to be too short because companies have to convert entire ecosystems and this takes time. As stated in the trilogue, the EU Commission must therefore support companies in implementing the Cyber Resilience Act, for example by providing implementation guidelines. There must be no legal uncertainty at this point, which would particularly affect startups and small and medium-sized companies. It is also regrettable that even after the trilogue negotiations have ended, there remains a lack of clarity about the extent to which open source software must and can meet the requirements of the Cyber Resilience Act.”
More at Bitkom.org
About Bitkom
The overarching goal of Bitkom is to make Germany a leading digital location, to advance the digital transformation of the German economy and administration, to strengthen digital sovereignty and to achieve broad social participation in digital developments.