05-31, 11:00–11:50 (Europe/Brussels), Katoenkamer
The Cyber Resilience Act (CRA) is a Europe wide product regulation that is coming into effect over the next two years. Developers should begin planning for it now, because compliance with the CRA may require significant time and resources. This presentation offers a short overview of the Act as of 2025, with a focus on how it could impact open source software. More importantly it will offer some of the basic information that developers can use to answer the question "How much will the CRA matter to my open source project?"
Specific topics to covered by the presentation include:
What the CRA covers and what it doesn't?
What is open source software as defined by the CRA?
What protections does the CRA offer to open source developers?
What the CRA says about open source and proprietary software collaboration?
What is an open source software steward?
M. August Bournique is a US licensed, Amsterdam based attorney who has worked at the intersection of technology and law since 2016. He has recently focused on the EU Cyber Resiliency Act and is currently part of the standards drafting project for the Act.