Also Netnod has (of course) sent in feedback. To EU and together with Internetstiftelsen, registry for .SE and .NU, to the Swedish Government. TL;DR: It will, as we explain, be interpreted as an ex-ante regulation so that the organisations that implement SOME security will implement what the legislator asks for. This instead of ex-post where responsibility is on the entity to "not provide broken things" where the provider can choose what methods to use. Wil will get a legislation that tell players what to do. Regardless of whether what they are asked to do actually helps and increases security and robustness in the society. It will be more important to be compliant than to improve security. To EU: <https://ec.europa.eu/info/law/better-regulation/have-your-say/initiatives/13410-Cyber-resilience-act-new-cybersecurity-rules-for-digital-products-and-ancillary-services/F3376625_en> To Swedish Government: <https://www.netnod.se/netnod-and-internetstiftelsen-responds-to-the-eu-commissions-proposed-adoption-of-the-cyber-resilience-act> Patrik Fältström Head of Security Netnod On 5 Mar 2023, at 10:23, Desiree Miloshevic wrote:

Dear members and colleagues

The following blog post might be of interest:

https://berthub.eu/articles/posts/eu-cra-secure-coding-solution/

Desiree —

--

To unsubscribe from this mailing list, get a password reminder, or change your subscription options, please visit: https://lists.ripe.net/mailman/listinfo/cooperation-wg