EU's Cyber Resilience Act Passes with Wins for Open Source https://pyfound.blogspot.com/2024/01/CRA-update.html
On Saturday, December 30, 2023 at 10:55:20 PM UTC-5 Tim Daly wrote: > Further analysis of the forthcoming E.U. Cyber Resilience Act: > > https://berthub.eu/articles/posts/eu-cra-what-does-it-mean-for-open-source/ > > On Friday, December 29, 2023 at 12:13:20 AM UTC-5 Tim Daly wrote: > >> Debian posting about free and open software and the E.U.Cyber Resilience >> Act >> >> https://bits.debian.org/2023/12/debian-statement-cyber-resillience-act.md.html >> >> >> >> The European Union is currently preparing a regulation "on horizontal >> cybersecurity >> requirements for products with digital elements" known as the Cyber >> Resilience Act (CRA). >> It is currently in the final "trilogue" phase of the legislative process. >> The act includes a set >> of essential cybersecurity and vulnerability handling requirements for >> manufacturers. It >> will require products to be accompanied by information and instructions >> to the user. >> Manufacturers will need to perform risk assessments and produce technical >> documentation and, for critical components, have third-party audits >> conducted. Discovered >> security issues will have to be reported to European authorities within >> 25 hours (1). >> The CRA will be followed up by the Product Liability Directive (PLD) >> which will introduce >> compulsory liability for software. >> >> While a lot of these regulations seem reasonable, the Debian project >> believes that there >> are grave problems for Free Software projects attached to them. >> On Saturday, December 23, 2023 at 12:37:34 AM UTC-5 oldk1331 wrote: >> >>> LGTM. >>> >>> P.S. to Ralf: >>> >>> About the copyright file mentions Rioboo: >>> >>> From an email by him to axiom-dev in 2014-Sep-10: >>> >>> ==== Quote >>> You can put any kind of free license on my code. >>> >>> When I was at UPMC there were concerns about software licenses in >>> particular for the real closure package which was inside NAG's Axiom. >>> Things have much evolved now and we may distribute software with free >>> license. >>> ==== END Quote >>> >>> So we can remove "is the property of university Paris 6." in reclos.spad >>> to avoid confusion. >>> >>> - Qian >>> >>> On 12/23/23 05:38, Waldek Hebisch wrote: >>> > On Fri, Dec 08, 2023 at 09:39:58PM +0800, Qian Yun wrote: >>> >> I just realized that there is also this file: "src/etc/copyright". >>> >> >>> >> What to do with it? >>> > >>> > I think it is best to remove it. >>> > >>> >> Note that this file is printed by ")copyright" command. So if >>> >> we decide to remove it, we should also adjust Makefile to install >>> >> LICENSE.txt to this location. >>> > >>> > The attached patch is doing this. >>> > >>> >> -- You received this message because you are subscribed to the Google Groups "FriCAS - computer algebra system" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/fricas-devel/f23df768-61ed-422d-ba13-9bd7ef8c8e37n%40googlegroups.com.
