Implementing the Cyber Resilience Act - engaging with open source
Janson | Day 2 | 13:30 - 13:55 | Speakers: Carl-Daniel Hailfinger, Filipe Jones Mourao, Lucia Lanfri, Laure POURCIN
Abstract
In 2024 we gave a talk called "The Regulators are Coming". This year, the regulators are here!
This will be a talk to update the broader community on how the implementation of the CRA is advancing, and how we have made efforts to include the open source community so far. There will be a short update from the European Commission, the European Standardisation Organisations (CEN/CENELEC and ETSI) and a representative from a Market Surveilllance Authority (BSI Germany).
Questions? https://digital-strategy.ec.europa.eu/en/policies/cyber-resilience-act
Want to participate? https://www.stan4cra.eu/
Survey on CRA Article 25 - Attestation for Open-Source Software This survey gathers input on how voluntary security attestation programmes for open-source software could work under Article 25 of the Cyber Resilience Act. https://dialog-cybersicherheit.limesurvey.net/113884?lang=en
Examples of responses to CRA-related demands are available in the attachment below, titled "Helpful replies for FOSS developers". Yes, including references to the relevant articles of the CRA.
Speakers
Carl-Daniel has been a hobbyist FOSS developer since 2002 (first Linux kernel patch). In the past, he was the maintainer of flashrom. Nowadays, he is a maintainer for the Hai-End Streaming project and occasional contributor of fixes to various projects. He enjoys reverse engineering and building seemingly impossible things.
During the day, he works on operating system and firmware security at the Federal Office for Information Security (BSI) in Germany. In his lab at work, he is breaking things and building better alternatives with FOSS.
Policy Officer at DG Connect, European Commission
Links
External Links
Notice: The placeholder video image is licensed under CC BY-SA 4.0. The original image can be found hereChanges made to the image are: Cropped the image to a new ratio, part of the image was cut off.
