The Cyber Resilience Act (CRA), is a horizontal regulatory framework of the European Union (EU), which applies to hardware and software products (“products with digital elements”) that are made available on the EU market. Such products include both final products and components placed separately on the market.
It aims to set the conditions for the development of secure hardware and software in the EU, in order to strengthen the EU approach to cybersecurity and improve the functioning of the internal market. It also empowers users to take cybersecurity into account when buying and using such products by ensuring that adequate information is made available to them.
