The Cyber Resilience Act (CRA) proposal comes at a time when European society, its citizens and businesses have been dealing with a crisis period marked by the COVID-19 pandemic and the war in Ukraine. The telecommunications sector has been capable of responding to these challenges and of demonstrating its robustness, by providing secure and reliable infrastructures and services that are essential for the functioning of the EU’s Digital Internal Market. However, telecommunication network operators are still faced with security gaps in their digital value chains that need addressing.
ETNO and GSMA recommend that the final CRA regulation meets the key objectives that have been pursued by the initial proposal:
In light of these objectives, we recommend that co-legislators make some relevant changes to the draft regulation to effectively enhance the cybersecurity of products and services and the cyber resilience of the internal market:
We elaborate on our recommendations in the paper.
For questions and clarifications regarding this feedback, please contact Paolo Grassia (grassia@etno.eu), Director of Public Policy at ETNO, and Lotte Abildgaard (labildgaard@gsma.com), Director of Public Polict at GSMA.