“meta-cra-compatible”
Marta Rybczynska;
Talk with discussion
The Cyber Resilience Act mandates security for all embedded products. This includes secure-by-default configuration, a mandatory update mechanism, and more.
The Yocto Project allows easy assembly of building blocks and the creation of a CRA-compatible product, but this will require user intervention, setup, and additional recipes. Each vendor can do it on their own, or we can mutualize the effort and work together.
This session will be an occasion to discuss creating an easy-to-use, CRA-compatible configuration. Marta will remind us of the CRA requirements, and then we will discuss various features, starting from compiler options and user setup by logging and auditing to secure boot and updates.