2024³â 12¿ù 10ÀÏ¿¡ Á¦Á¤µÈ EU »çÀ̹ö º¹¿ø·Â¹ý(CRA)Àº Ä¿³ØƼµå µðÁöÅÐ Á¦Ç° Á¦Á¶¾÷ü¿¡ ´ëÇÑ ±¤¹üÀ§ÇÑ »çÀ̹ö º¸¾È ¿ä°ÇÀ» ±ÔÁ¤ÇÏ°í ÀÖ½À´Ï´Ù. º¸¾È Á¦Ç° °ø±Þ¾÷ü¸¦ Æ÷ÇÔÇÑ ¸ðµç ±â¼ú °ø±Þ¾÷ü´Â 2027³â 12¿ùÀÇ ±âÇÑÀ» ¸ÂÃß±â À§ÇØ ÄÄÇöóÀ̾𽺸¦ À§ÇÑ ³ë·ÂÀ» ½ÃÀÛÇØ¾ß ÇÕ´Ï´Ù. ÀÌ IDC Market Perspective¿¡¼´Â CRAÀÇ Àû¿ë ¹üÀ§, Á¦Ç° À§Çè ºÐ·ù, ÁÖ¿ä ±ÔÁ¦ Àǹ«, ±ÔÁ¤ À§¹Ý¿¡ ´ëÇÑ Ã³¹ú, ±×¸®°í ±ÔÁ¤ Áؼö¸¦ À§ÇÑ ±ÇÀå Á¶Ä¡¿¡ ´ëÇØ ¼³¸íÇÕ´Ï´Ù.
The EU Cyber Resilience Act (CRA), enacted on December 10, 2024, establishes extensive cybersecurity requirements for manufacturers of connected digital products. Technology vendors, including providers of security products, will need to begin compliance initiatives to meet the December 2027 deadline. This IDC Market Perspective explores the CRA's scope of application, product risk classifications, key regulatory obligations, penalties for non-compliance, and recommended actions for achieving compliance.