Euralarm proposes definitions for Cyber Resilience Act implementation
Iain Hoey
Share this content
Euralarm publishes position paper on Cyber Resilience Act
Euralarm has released a position paper proposing definitions that can be adopted by the European Commission in the Implementing Act that complements the Cyber Resilience Act (CRA).
As reported by Euralarm, the CRA is set to be published in the Official Journal of the European Union (OJEU) by the end of September or October 2024.
The new regulation introduces essential requirements to ensure that digital products, including both hardware and software, are more resilient to cyber-attacks.
The CRA will also ensure that vulnerabilities are addressed throughout the support period of each product via updates.
Conformity assessment procedures under the CRA
The CRA mandates conformity assessment procedures for compliance with its essential requirements.
Most digital products will be subject to self-assessment, provided that harmonised standards are applied, and compliance is presumed when these standards are cited in the OJEU.
However, the CRA lists certain “important” and “critical” products that will be subject to stricter conformity assessments.
One of these categories, “smart home products with security functionalities,” includes smart door locks, security cameras, baby monitoring systems, and alarm systems.
These products will require either adherence to a harmonised standard cited in the OJEU or an EU type examination by a CRA-notified body.
Importance of clear definitions for smart home products
Euralarm has stressed the need for precise definitions for smart home products with security functionalities listed in Annex III of the CRA.
The association highlighted that it is essential to ensure that clear definitions are in place to support the application of the CRA’s regulations.
Euralarm’s position paper proposes such definitions, based on a review of the category’s wording in Annex III and the criteria set out in Article 7(2) of the CRA.
Euralarm’s role in shaping regulatory clarity
Euralarm, representing the European electronic fire safety and security industry, values the opportunity to contribute to the ongoing discussions on the CRA’s implementation.
The association’s input is aimed at ensuring that the European Commission adopts definitions that are both clear and practical for the industry.
Euralarm’s proposals are designed to facilitate compliance with the CRA’s requirements and to enhance the overall security of smart home products across Europe.
Euralarm proposes definitions for Cyber Resilience Act implementation: Summary
Euralarm has released a position paper proposing definitions for smart home security products under the Cyber Resilience Act (CRA).
The CRA, which is expected to be published in late 2024, introduces essential requirements to enhance the resilience of digital products against cyber-attacks.
The regulation also requires conformity assessments, with most products benefiting from self-assessment, while “important” and “critical” products, such as smart home security systems, will be subject to stricter assessments.
Euralarm emphasised the need for clear definitions in Annex III of the CRA to ensure compliance and has submitted proposals for these definitions to the European Commission.