- The Commission on Thursday (15 September) proposed its proposal for a Cyber Resilience Act, legislation aiming to address vulnerabilities in connected devices through a security-by-design approach.
- This legislation shall transit from the security of services to products “to protect both consumers and businesses from products that have inadequate security features,” Schinas added, as manufacturers will have to ensure that they put digitally secure products on the market.
- Manufacturers must notify the EU Agency for Cybersecurity (ENISA) within 24 hours if becoming aware of any actively exploited vulnerability in the product or any incident with security impacts.
Commission presents Cyber Resilience Act targeting Internet of Things products
