Technical article

Technical Guideline for Cyber Resilience Requirements

BSI TR-03183: Requirements of the future Cyber Resilience Act (CRA) for manufacturers

Share Article
Share Button Linkedin Share Button Xing Share Button Twitter Share Button Email

The European Cyber Resilience Act is currently being negotiated between the EU institutions. As already reported, the CRA defines requirements for the security of products. These requirements are sometimes difficult to classify for people without prior knowledge in the field of IT or OT security. The German Federal Office for Information Security (BSI) offers support with a publication.

"The Technical Guideline TR-03183: Cyber Resilience Requirements for Manufacturers and Products aims to make the type of requirements that the future Cyber Resilience Act (CRA) will impose on manufacturers accessible to them in advance."

The above publication consists of two parts. At the current time, only the second part (software bill of material) has been published, which describes how the CRA's requirement regarding evidence of software supply chains may look.

At the moment, the first part, which concretises and explains the multitude of requirements from the Cyber Resilience Act, is not yet available. We will inform you as soon as we have knowledge that this part has also been published.

We believe that the work of the BSI makes a very valuable contribution to making the cyber requirements much more tangible for manufacturers of machinery, plant and electrical equipment.  

Go to the BSI page


Subscribe now to our free CE-InfoService and stay informed when relevant news in the field of product compliance (e.g. the publication of the first part of TR-03183) occur.  

Posted on: 2023-08-29



Johannes Windeler-Frick, MSc ETH
Managing Director of IBF Solutions AG, the Swiss subsidiary of IBF in Zürich. Johannes is a trainer for both the Machinery Directive (MD) as well as the Low Voltage Directive (LVD). He studied electrical engineering at ETH Zürich with a specialization in energy systems. 

Email: |


You are not yet registered? Register now for the free CE InfoService and receive information by e-mail when new technical papers, important standards publications or other news from the field of machinery and electrical equipment safety or product compliance are available.


Picture advertisement safexpert the practice software for CE marking

Support by IBF

CE Software Safexpert

CE software for systematic and professional safety engineering


Practical seminars on aspects of risk assessment and ce-marking

Stay Up-to-Date!

With the CE InfoService you stay informed about important developments in the field of product safety.