Calltopics Ecosystem Bubbles Event Calendar

DIGITAL-ECCC-2024-DEPLOY-CYBER-06-COMPLIANCECRA

Tools for compliance with CRA requirements and obligations -

⚫ indicates current topic
Node background color indicates the call topic status
Double click on a topic to center information around it.
Node size is proportional to distance from the current topic

About the connections

The graph above was generated based on the following links

  • DIGITAL-ECCC-2024-DEPLOY-CYBER-07-CYBERSEC-02
    Support for Implementation of EU Legislation on Cybersecurity and National Cybersecurity Strategies (2024)

    MOTIVATION These call topics belong to a number of topics supporting the implementation of EU legislation related to cybersecurity.

Call text (as on F&T portal)

View on F&T portal
Expected Outcome:

Deliverables:

  • Tools to simplify and automate CRA compliance, with particular focus towards automated compliance tools that would ensure alignment with the CRA cybersecurity essential requirements.
  • Tools to simplify and automate CRA compliance documentation obligations.
Objective:

The objective of this topic is to support the implementation of the proposed Cyber Resilience Act (CRA) through tools that support, and where possible automate, internal compliance procedures, including testing and specification drafting with focus towards European SMEs, in particular micro and small enterprises.

Scope:

This action aims at the design and development of tools to facilitate, and where possible automate, CRA compliance, with particular focus towards automated compliance tools that would ensure alignment with the CRA cybersecurity essential requirements and documentation obligations.

CRA compliance solutions are foreseen based on technical specifications, training modules, and other relevant material. Tools for penetration testing, testing facilities and other cybersecurity practices, aligning with CRA requirements, are also in the scope.

Tools should be tailored towards needs of European SMEs, with a focus on micro and small enterprises, though also usable by broader stakeholder categories, such as:

  • Manufacturers of relevant product categories falling within the scope of the CRA, including software developers.
  • Others, such as distributors, importers, open-source community, etc.

CRA compliance tools should be made widely available on fair and reasonable terms and also take into consideration the specific needs of different stakeholders such as the behaviour of consumers, business users, and other relevant factors.

Priority should be given to solutions available to use free of charge or free and open-source software (FOSS) solutions.

These activities should be carried out in close coordination and, where possible collaboration, with the Network of National Coordination Centres (NCCs), the European Digital Innovation Hubs (EDIHs) network, the EU Cybersecurity Skills Academy, other relevant European and National cybersecurity entities, and other projects of this work programme.

This action aims at the creation of tools that, amongst others, do penetration testing or document technical specifications with relation to cybersecurity, including for entities that are providers of essential services and critical infrastructures. As such tools and information could be exploited by malicious actors, they must be protected against possible dependencies and vulnerabilities in cybersecurity to pre-empt foreign influence and control. As previously noted, participation of non-EU entities entails the risk of highly sensitive information about security infrastructure, risks and incidents being subject to legislation or pressure that obliges those non-EU entities to disclose this information to non-EU governments, with an unpredictable security risk. Therefore, based on the outlined security reasons, the actions relating to these technologies are subject to Article 12(5) of Regulation (EU) 2021/694.

News flashes

2024-07-17

For information on the evaluations results of this call we invite you to consult the Flash call info (evaluation results) in the following link.

2024-07-17

For information on the evaluations results of this call we invite you to consult the Flash call info (evaluation results) in the following link.

2024-01-16
The submission session is now available for: DIGITAL-ECCC-2024-DEPLOY-CYBER-06-STANDARDPQC(DIGITAL-JU-CSA), DIGITAL-ECCC-2024-DEPLOY-CYBER-06-TRANSITIONEUPQC(DIGITAL-JU-CSA), DIGITAL-ECCC-2024-DEPLOY-CYBER-06-ENABLINGTECH(DIGITAL-JU-SIMPLE), DIGITAL-ECCC-2024-DEPLOY-CYBER-06-COMPLIANCECRA(DIGITAL-JU-SME), DIGITAL-ECCC-2024-DEPLOY-CYBER-06-STRENGTHENCRA(DIGITAL-JU-GFS), DIGITAL-ECCC-2024-DEPLOY-CYBER-06-PQCINDUSTRY(DIGITAL-JU-SIMPLE)
2024-01-16
The submission session is now available for: DIGITAL-ECCC-2024-DEPLOY-CYBER-06-STANDARDPQC(DIGITAL-JU-CSA), DIGITAL-ECCC-2024-DEPLOY-CYBER-06-TRANSITIONEUPQC(DIGITAL-JU-CSA), DIGITAL-ECCC-2024-DEPLOY-CYBER-06-ENABLINGTECH(DIGITAL-JU-SIMPLE), DIGITAL-ECCC-2024-DEPLOY-CYBER-06-COMPLIANCECRA(DIGITAL-JU-SME), DIGITAL-ECCC-2024-DEPLOY-CYBER-06-STRENGTHENCRA(DIGITAL-JU-GFS), DIGITAL-ECCC-2024-DEPLOY-CYBER-06-PQCINDUSTRY(DIGITAL-JU-SIMPLE)
call topic details
Call status: Closed
Publication date: 2023-12-17 (1 year ago)
Opening date: 2024-01-16 (1 year ago)
Closing date: 2024-03-26 (1 year ago)
Procedure: single-stage

Budget: 8000000
Expected grants: 0
News flashes

This call topic has been appended 4 times by the EC with news.

  • 2024-07-17
    for information on the evaluations resul...
  • 2024-07-17
    for information on the evaluations resul...
  • 2024-01-16
    the submission session is now available...
  • 2024-01-16
    the submission session is now available...
Call

DIGITAL-ECCC-2024-DEPLOY-CYBER-06

Call topics are often grouped together in a call. Sometimes this is for a thematic reason, but often it is also for practical reasons.

There are 5 other topics in this call:

Source information

Showing the latest information. Found 5 versions of this call topic in the F&T portal.

Information from

  • 2025-01-29_03-20-06
  • 2024-11-23_03-20-12
  • 2024-11-04_17-26-59
  • 2024-09-30_21-21-11
  • 2024-03-30_14-27-10

Check the differences between the versions.

Annotations (will be publicly visible when approved)

You must be logged in to add annotations
No annotations yet

Events

This is just a very first implementation, better visualisation coming

Events are added by the ideal-ist NCP community and are hand-picked. If you would like to suggest an event, please contact idealist@ffg.at.

Call topic timeline

What phase of the topic timeline are we in? This timeline contains some suggestions on what are realistic actions you should or could take at this moment. The timeline is based on the information provided by the call topic.

  1. Work programme available

    - 1 year ago

    The call topics are published first in the Work Programme, which is available a while before the call opens. By following up the Work Programme publications, you can get a headstart.

  2. Publication date

    - 1 year ago

    The call was published on the Funding & Tenders Portal.

  3. Opening date

    - 1 year ago

    The call opened for submissions.

  4. Closing date

    - 1 year ago

    Deadline for submitting a project.

  5. Time to inform applicants Estimate

    - 8 months ago

    The maximum time to inform applicants (TTI) of the outcome of the evaluation is five months from the call closure date.

  6. Sign grant agreement Estimate

    - 5 months ago

    The maximum time to sign grant agreements (TTG) is three months from the date of informing applicants.

  7. Today

Funded Projects

Loading...

Project information comes from CORDIS (for Horizon 2020 and Horizon Europe) and will be sourced from F&T Portal (for Digital Europe projects)

Bubbles

This call topic is part of: