The Costs and Benefits of Security-by-Design in the Cyber Resilience Act
The European Union’s recently presented Cyber Resilience Act seeks to bolster the cybersecurity of digital products used by EU consumers. By imposing cybersecurity requirements on hardware and software products, the Act aims to address gaps in Europe’s existing cybersecurity regulatory framework through security-by-design. Security-by-design requires businesses to implement security features, either specific or abstract, at the onset or design phase of a project. Advocates argue that this approach will protect Europe’s collective security and minimize cybersecurity incidents, especially for the Internet of Things. Opponents worry that this approach will not apply appropriately to future technological advancements and could even stifle innovation.
Watch the webinar where ITIF's Center for Data Innovation lead a discussion on the Cyber Resilience Act, the basics of security-by-design, and whether a security-by-design approach will effectively tackle future cybersecurity risks.
- Watch here, or on datainnovation.org