Embedded systems are at the heart of modern industry, powering everything from automotive applications to industrial automation. But as software continues to define embedded technologies, new regulations like the Cyber Resilience Act (CRA) are set to reshape how manufacturers and developers approach security and compliance. With its broad-reaching impact, the CRA raises many questions—especially for those working with open source. That’s where the Eclipse Open Regulatory Compliance (ORC) Working Group comes in.
Join us at Embedded World 2025, March 11-13, 2025, to explore how the ORC is helping the embedded community navigate the CRA and other emerging regulations.
What You Need to Know About the CRA
The Cyber Resilience Act introduces new requirements to ensure that software and hardware products meet strict cybersecurity standards. While its goal is to enhance security across the European market, it brings challenges for embedded technology providers, especially when integrating open source components. Compliance will require a clear understanding of software supply chain security, vulnerability management, and risk assessment—all of which the ORC is actively working to address.
How ORC Can Help
ORC is dedicated to supporting the open source ecosystem in achieving regulatory compliance. By working closely with industry leaders, open source foundations and developers, we collaborate on best practices, develop resources like our CRA FAQ, contribute to standardization activities in CEN/CENELEC and track evolving regulations that impact embedded systems. Our work ensures that organisations can meet compliance requirements without stifling innovation.
Meet with Us at Embedded World
Want to learn more about how the CRA will impact your products? Looking for a strategic approach to regulatory compliance? Book a meeting with us at Embedded World 2025 to discuss the ORC Working Group and how you can get involved.
We look forward to seeing you there!
