Skip to content

Potential New Work Item: Framework for Manufacturers #75

New issue
New issue
Open
Open
Potential New Work Item: Framework for Manufacturers#75
Assignees
torgo
Labels
Agenda+Ready to discuss on a forthcoming callCRArelated to the Regulation (EU) 2024/2847 (Cyber Resilience Act, CRA)Working GroupdocumentationImprovements or additions to documentation
@torgo

Description

@torgo
torgo
opened on Nov 6, 2025

One of the potential work items for our group that came out of our discussions on "security due diligence" in Ghent was a kind of framework for manufacturers. I envision that this would be a kind of document that would describe in general terms the kinds of processes and procedures that enterprises might adopt in order to better ensure compliance. For example, we could define security due diligence and make it clear when an enterprise might need to do this. This could reference other freely available guides (such as the concise guide to evaluating OSS or tools that might be used. This document could enable enterprise OSPOS or other similar organizations to have a shared vocabulary as well as a general idea of the kinds of processes they might need to incorporate.

Metadata

Metadata

Assignees

Labels

Agenda+Ready to discuss on a forthcoming callCRArelated to the Regulation (EU) 2024/2847 (Cyber Resilience Act, CRA)Working GroupdocumentationImprovements or additions to documentation

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions