CybersecurityCRA
Cyber Resilience Act
An EU regulation setting cybersecurity requirements for products with digital elements across their lifecycle, including secure development and vulnerability handling.
The EU Cyber Resilience Act establishes horizontal cybersecurity requirements for products with digital elements placed on the EU market, covering secure-by-design development, vulnerability handling, and obligations to provide security updates.
For the space sector it can reach hardware and software products in the ground segment and supply chain, complementing the operator-focused obligations of NIS2. Together they push cybersecurity accountability across both products and operations.