IAR taps EU Cyber Resilience Act to boost embedded security
IAR Systems in Sweden is providing security tools to embedded developers to meet coming legislation from the European Union.
The EU Cyber Resilience Act, proposed in September, obliges manufacturers to protect their internet-connected electronic products from unauthorized access at all stages of their life cycle.
The legislation will apply to all Internet of Things (IoT) and Industrial Internet of Things (IIoT) devices that are exposed to risks through their web connectivity. Malware may impact systems, enter IT or OT (Operational Technology) systems, implement ransomware, or steal critical intellectual property.
The proposed act requires harmonized rules for new products or software, a framework of cybersecurity requirements governing such as products’ planning, design, development, and maintenance along the whole value chain and an obligation to provide a duty of care for the entire product lifecycle.
IAR has developed a set of embedded tools to implement cybersecurity and address the regulatory challenges, including Embedded Trust and Secure Deploy. This aims to help developers implement security best practices with little impact on existing development processes, production, and support updates for lifecycle management.
Embedded Trust and Secure Deploy use the secure hardware in microcontrollers to provide the low-level trust anchors and secure services. The automated tools included in the platform cover multiple core security domains including integrated identity and certificate management, scalable Secure Boot Manager, secure deployment with integrated manufacturing mastering, and release management with versioning and update infrastructure. IAR Systems also provides training and hands-on guidance for all stages in design and development.
- IAR Systems and Secure Thingz add security support
- IAR, NXP boost protection of IoT connected devices
“The IAR Embedded Security solutions incorporate our entire experience and expertise in cybersecurity – and we make this ‘Security Made Simple’ available for customers worldwide,” said Anders Holmberg, CTO at IAR Systems. “For our customers, the investment in security tools pays off quickly: While they can offer their end customers trustworthy products and applications with a fast time-to-market, they also better protect their R&D investments, and cryptographically secure their valuable intellectual property.”
IAR Systems is a founder member of the IoT Security Foundation and was substantially involved in developing the best practices for securing electronics devices and connected applications, which have been adopted into regulations by the UK government (DCMS), the EU (ETSI), the US (NIST) and other nations.
Other articles on eeNews Europe
- Google builds embedded AI operating system in Rust
- Second graphene multi-project wafer run set to start
- Philips layoffs as supply chain, recall bites
- TSMC heads below 1nm with 2D transistors at IEDM
- ARM splits out its IoT business
