Bridging EUCC Certification and CRA Complaince: A Practical Study on MRTD Products (B13a)
The Cyber Resilience Act (CRA) introduces new essential requirements for critical products, including data minimisation , SBOM, re-testing. This talk explores how an existing EUCC can support CRA complaince through a pilot on an MRTD product . Conducted with Thales and CLR Labs, the study identifies gaps with CRA ESRs and proposes efficient approaches to address them.