FOSDEM 2026

"Making you embedded product CRA compliant" ( 2025 )

Sunday at 14:00, 60 minutes, H.3244, H.3244, BOF - Track C Marta Rybczynska

This BoF will be a place to discuss technical details of making embedded products (using open source) compliant with the CRA (Cyber Resilience Act).

We can chat about: - the technical blueprints (secure defaults, hardening, logging, updates...) - processes (risk assessment, vulnerability reporting) - tools (SBOM, CVEs...)

2026

0.61 "CRA Compliance in Embedded Systems: A Practical Look from the Yocto Project World"
0.57 "CRA Integration – How FOSS compliance measures support CRA obligations, especially regarding documentation, security updates, and traceability."
0.56 "Implementing the Cyber Resilience Act - engaging with open source"
0.54 "CRA overview for everyone, including projects and smaller organisations"
0.53 "First steps towards CRA conformity. A practical introduction to cybersecurity risk management."

2025

0.54 "Community-driven compliance: The CRA and the Open Regulatory Compliance Working Group"

2024

Related: