Join us for the kick-off of the newest event series by the OPC Foundation: the OPC UA Security Webinars, where we address the pressing need within our community to openly discuss and exchange insights on critical cybersecurity requirements. After the OPC UA Security Summit 2024 which discussed important security regulations by national bodies in Europe and North America, the OPC Foundation event team listened to your feedback and decided to continue the topic in an virtual event series. This event series will provide frequent insights on important security topics.
In this very first episode Dr. Gerrit Hötzel, Voelker Gruppe, will provide a legal view on the CRA to the audience. His sessions during the OPC UA Security Summit where rated the most valuable due to his ability to provide legal aspects in a language for engineers and software developers. For everyone who provides digital products to the European market those legal aspects need to be considered. He will provide insights about the commercial use of open-source software and important example cases for contract design and supply chain management while respecting the CRA.
Register here: https://register.gotowebinar.com/register/6893184083084619870
Here’s a sneak peek at what you can expect:
Session 1: Commercial Use of Open-Source Software under the Cyber Resilience Act
The first session will explore the challenges and requirements for companies using open-source software in commercial activities. Under the CRA, businesses must demonstrate the conformity of open-source software, a task complicated by its third-party nature. This session will cover:
- The significant shift from the current use of open-source software.
- Strategies to minimize legal risks.
- Security attestations and the role of open-source software stewards.
Session 2: 10 Example Cases for CRA Contract Design and Supply Chain Management
The second session will focus on the CRA’s impact on supply chain management and contractual obligations. Key topics include:
- The necessity of supplier participation in conformity assessments.
- The importance of contractual arrangements with both suppliers and customers.
- New requirements for providing security updates and information.
- The introduction of a support period of up to five years and its implications for warranty and liability clauses.