Unveiling the European Union’s Cyber Resilience Act: Transforming Cybersecurity Standards

In this video, we'll cover the key provisions of the CRA, including the mandate for a Software Bill of Materials (SBOM) and its role in fostering transparency. We'll examine the intricacies of this legislation and its implications for digital resilience across member nations.

Mandating Transparency: The Role of Software Bill of Materials (SBOM) under the CRA

The European Union’s Cyber Resilience Act (CRA) is reshaping cybersecurity standards across member nations.

The CRA mandates manufacturers to incorporate a Software Bill of Materials (SBOM) in formats such as CycloneDX and SPDX. This SBOM serves as an inventory of software dependencies, promoting transparency and accountability. While sharing the SBOM with entities like the European Union Agency for Cybersecurity (ENISA) and market surveillance authorities is compulsory upon request, there is no obligation to make this information public.

The CRA covers a broad spectrum, including operating systems, network monitoring tools, and certificate issuers. However, open-source projects developed without commercial intent are exempt from these regulations, alleviating the burden on the open-source community.

The CRA serves as a model for the global standardization of secure-by-design practices, highlighting governments’ commitment to cybersecurity. This legislation represents a significant step towards fortifying digital resilience in an interconnected world.

Advocate for standardized cyber resilience practices worldwide and witness how the CRA demonstrates governmental commitment to cybersecurity. Stay tuned for updates on this legislation as it shapes the future of cybersecurity.

How RunSafe Protects VxWorks Systems from URGENT/11 Exploits

Nov 14, 2025

Stopping URGENT/11 Attacks with RunSafe Protect In this demo, we show how RunSafe Protect defends VxWorks-based embedded systems from URGENT/11 memory safety exploits. You’ll see a vulnerable system challenged by a simulated attack and then observe how RunSafe’s...

RunSafe Security in 2 Minutes: Protecting Critical Software

Nov 11, 2025

Inside RunSafe: A Quick Look at Our Mission, Platform, and Impact RunSafe Security is dedicated to protecting the world’s most critical software across defense, infrastructure, automotive, and medical systems. In this video, you’ll see how our platform delivers a...

Using Binary Analysis to Quantify Potential Zero-Day Risk with Doug Britton

Oct 24, 2025

What if You Could Protect Software Before the Next Zero Day Is Discovered? Zero-day vulnerabilities are the hidden threat lurking in every software stack. In this THREATCON1 session, Doug Britton explains how organizations can use binary analysis to quantify potential...