With the EU Cyber Resilience Act (CRA) entering into force, the European regulatory landscape is shifting rapidly to address the cybersecurity of products with digital elements. To support this transition, CENELEC TC65X WG3 is leading the adaptation of the internationally recognized EN IEC 62443 series into harmonized European standards (hENs) that meet the essential cybersecurity requirements of the CRA.
This webinar will present an in-depth look at the current and upcoming standardization activities, with a focus on the amendment of EN IEC 62443-4-2:2019 into A11:2026, which forms the foundation for technical security requirements in industrial and critical digital products. The work includes:
- Adapting existing cybersecurity requirements (CRs) and requirement enhancements (REs) to the CRA framework
- Adding or updating rationales for each requirement and enhancement
- Introducing new REs and rationales to fill gaps based on CRA essential cybersecurity requirements
- Defining applicability criteria for all CRs and REs
- Integrating the EN IEC TS 62443-6-2 evaluation approach, including expected artefacts for conformity assessment
- Specifying Security Level-based acceptance criteria for each requirement
In parallel, EN IEC 62443-4-1:2018 is being amended to EN IEC 62443-4-1:2018/A11:2026 to strengthen alignment with the horizontal standard being currently developed under the CEN-CLC/JTC 13 WG 9 ‘Principles of Cyber Resilience’, updating/adding requirements on the documentation of the ‘intended use’ and ‘security context’, and the further specification/clarification of the expected development artefacts as an outcome of applying an EN IEC 62443-4-1 compliant product life cycle process.
These efforts will culminate in the development of six vertical standards targeting specific product categories listed in CRA Annex III—including VPNs, routers, SIEMs, and firewalls—ensuring tailored, product-relevant cybersecurity guidance.
Join us to gain a comprehensive understanding of how these standards are evolving, what it means for your organization, and how they will help meet CRA compliance through practical, aligned, and technically robust harmonized standards.
Speaker: Mr Srinath Pydi Narayana Rao.