Caught in the Net - What the Cyber Resilience Act Means for Open Source Software
Open Compute Project via YouTube
Build GenAI Apps from Scratch — UCSB PaCE Certificate Program
NY State-Licensed Certificates in Design, Coding & AI — Online
Overview
Google, IBM & Meta Certificates – 40% Off
One plan covers every Professional Certificate on Coursera.
Unlock All Certificates
Explore the European Cyber Resilience Act's groundbreaking impact on open-source software in this 25-minute conference talk. Learn how the CRA introduces mandatory cybersecurity requirements for digital products sold in the EU, marking the first time open-source software faces explicit regulatory scrutiny. Discover who falls within the Act's scope, including maintainers, stewards, and contributors, and understand the specific obligations that apply when code is published or used commercially. Examine key compliance requirements such as vulnerability management, Software Bills of Materials (SBOMs), and security policies, while gaining clarity on how "commercial activity" is defined under the regulation. Understand the newly introduced category of open-source stewards and their crucial role in balancing lightweight compliance measures with community-driven development practices. Gain practical insights on how open-source projects and vendors can effectively prepare for these regulatory changes and navigate the evolving landscape of cybersecurity compliance in the open-source ecosystem.
Syllabus
Caught in the Net What the Cyber Resilience Act Means for Open Source Software
Taught by
Open Compute Project