On 02/12/2022 11:14, Suzanne Taylor wrote:
We’d like to draw your attention to a proposal put forth by the European Commission to strengthen cybersecurity rules for hardware and software products, called the Cyber Resilience Act (CRA):
https://digital-strategy.ec.europa.eu/en/library/cyber-resilience-act
[..] In particular, Maarten Aertsen of NLnet Labs gave a presentation about the CRA during RIPE 85 [..] https://ripe85.ripe.net/programme/meeting-plan/os-wg/
For those who prefer reading to watching: there's an (extended) written version of the talk on our blog: https://blog.nlnetlabs.nl/open-source-software-vs-the-cyber-resilience-act/ Thank you for calling attention to this initiative, Suzanne. I think it will be valuable to be able to refer to contributions by RIPE NCC and others in the community when talking to policy makers. kind regards, Maarten -- Maarten Aertsen senior internet technologist, NLnet Labs