Euralarm’s new Position Paper: proposals for CRA important products
Euralarm, the European trade association representing the electronic fire safety and security industry, released a Position Paper to propose definitions that can be endorsed by the European Commission in the Implementing Act complementing the CRA.
The Cyber Resilience Act (CRA) is expected to be published in the Official Journal of the European Union (OJEU) in September or October this year and it will provide essential requirements enforcing protection mechanisms on digital products (hardware and software) to improve their resilience against cyber-attacks. In addition, the essential requirements will ensure that identified vulnerabilities are duly handled and result in updates to the products during the whole support period of the product.
The importance of CRA’s conformity assessment procedures for Euralarm
CRA imposes conformity assessment procedures for the demonstration of compliance with these essential requirements. While most digital products are announced to benefit from the procedure of self-assessment, regardless of the existence of harmonised standards, and presumption of conformity when a harmonised standard (cited in the OJEU) is applied, categories of important products and critical products are listed in this Regulation and associated with a stricter conformity assessment procedure.
At least one category of important products Class I is of importance for the Euralarm members. This one is listed in Annex III of the CRA as “Smart home products with security functionalities, including smart door locks, security cameras, baby monitoring systems and alarm systems”.
This category will require either the application of a harmonised standard cited in the OJEU or an EU type examination by a CRA notified body. It is therefore of utmost importance to have clear and unambiguous definitions for it.
Photo: © Adam121 | Dreamstime.com