BSI TR-03183: Cyber Resilience Requirements for Manufacturers and Products

The Technical Guideline TR-03183: Cyber Resilience Requirements for Manufacturers and Products aims to provide manufacturers with advance access to the type of requirements that will be imposed on them by the future Cyber Resilience Act (CRA) of the EU. The CRA was published as a draft in September 2022 and is currently a matter of the legislative process. Following possible changes to the final legal text, the Technical Guideline may be adapted.

Part 1 "General Requirements" describes requirements for Manufacturers and Products on the basis of the articles and annexes of the CRA. Part 1 is currently under developement.

Part 2 "Software Bill of Materials (SBOM)" describes formal and technical requirements for Software Bill of Materials (SBOM), which are required in Part 1 of TR-03183, among others.