Skip to main content
All Posts By

Anna Marton, Safepay Systems

First Union Rolling Work Programme for European cybersecurity certification News

First Union Rolling Work Programme for European cybersecurity certification

On 7. February 2024, the Commission published the first Union Rolling Work Programme for European cybersecurity certification. The work programme fulfils the requirement of the Cybersecurity Act, Title III: the European Cybersecurity Certification Framework, for the establishment of voluntary European cybersecurity certification schemes. While three European cybersecurity certification schemes under…
Using digital twins for improving the security of cyber-physical systems – the DOSS approach Insights

Using digital twins for improving the security of cyber-physical systems – the DOSS approach

By Levente Buttyán, CrySyS Lab, Budapest University of Technology and Economics  Digital twins are virtual copies of physical devices or entire systems that can be used to address various challenges in the design, testing, and operation of those devices and systems. During the design phase, a digital twin can, for…
Capgemini report on consumer-facing connected products News

Capgemini report on consumer-facing connected products

Capgemini conducted a global survey of more than 10,000 consumers in November 2023 to understand consumer interest in consumer-facing connected products – wearables, home automation, health monitoring products, and fitness systems. The report explores the topic in-depth, but we summon here only the most relevant findings from our perspective. 67%…
Deliverable D2.1 IoT supply chain security requirements Deliverables

Deliverable D2.1 IoT supply chain security requirements

D2.1 builds on best practices and guidelines, standards and regulations, and other private sources that analyze supply chain security and privacy requirements, attacks, and vulnerabilities. It classifies a set of domain-agnostic security requirements, applicable in diverse environments, that a trusted supply chain should fulfill. In the context of the DOSS…
What to expect in European cybersecurity legislation in 2024? News

What to expect in European cybersecurity legislation in 2024?

The updated Network and Information Security Directive (NIS2) has been in force since 1 January 2023, with member states having time until 17 October 2024 to implement it into law. In Hungary for example, which has already enacted its law on cybersecurity certification and cybersecurity supervision, implementing the NIS2, the…
The DOSS approach for Vulnerability Prediction using Large Language Models (LLMs) Insights

The DOSS approach for Vulnerability Prediction using Large Language Models (LLMs)

By Miltiadis Siavvas,  Information Technologies Institute (ITI) of the Centre for Research and Technology-Hellas (CERTH) Background and Existing Challenges Software Security is a matter of major concern for software-based systems and their broader supply chain since the exploitation of a single vulnerability can lead to far-reaching consequences both for the…
The European Parliament and the Council reached a political agreement on the Cyber Resilience Act News

The European Parliament and the Council reached a political agreement on the Cyber Resilience Act

On 30 November 2023, the European Parliament and the Council reached a political agreement on the Cyber Resilience Act (CRA). However, the co-legislators agreed to propose certain adjustments about: the scope of the CRA, with a simpler methodology for the classification of digital products to be covered; the support period was amended…