.jpg "ONEKEY GmbH")
Connected Devices: Now Easily and Automatically Tested for Cybersecurity & Compliance
Connected Devices: Now Easily and Automatically Tested for Cybersecurity & Compliance
- The enhanced ONEKEY platform enables automated cybersecurity testing according to the Cyber Resilience Act, RED II (EN 18031-1), ETSI 303645 and many more standards.
- ONEKEY CEO Jan Wendenburg: “We are constantly expanding and updating our automated cybersecurity testing with new standards.”
Duesseldorf, 18 March 2025 – The Product Cybersecurity and Compliance Platform from cybersecurity company ONEKEY now supports the RED II (EN 18031-1) standard, in addition to ETSI 303 645, the Cyber Resilience Act (CRA) and many more standards. This enhancement enables manufacturers and users to automatically identify software in their networked devices, machines, and systems that may not meet the requirements of these standards. "Our goal is to continuously expand the platform to automatically check for compliance with all major regulatory requirements, providing manufacturers and users with specific insights to resolve compliance issues faster and more efficiently," explained Jan Wendenburg, CEO of ONEKEY, outlining the company’s strategy.
The EU Commission's Cyber Resilience Act requires manufacturers to test their products for security vulnerabilities throughout their lifecycle and to fix them immediately if necessary. The Radio Equipment Directive (RED) is an EU regulation on electromagnetic compatibility and the efficient use of the radio frequency spectrum. One of the key additions in the new version of RED II is the consideration of cybersecurity to protect equipment from cyber-attacks.
The Product Cybersecurity & Compliance Platform (OCP) functions as a comprehensive solution, ranging from managing a Software Bill of Materials (SBOM) and the vulnerability management required by RED II, to ONEKEY's Compliance Wizard. The patent-pending Compliance Wizard combines an automated cybersecurity check with a virtual assistant that guides companies through a simplified assessment of their technical cyber compliance. This enables a dialog-based status assessment followed by analysis and documentation, which can also be used to meet the growing documentation requirements in cybersecurity matters.
“The automated testing provided by our platform and Compliance Wizard makes it much easier for manufacturers to check their products' software for the latest legal requirements in terms of cybersecurity and to receive specific instructions in the event of an error," said Jan Wendenburg. He continued: “Any vulnerabilities are detected by the platform so that they can be addressed in a targeted manner. This creates cost-effective security.”
ONEKEY Has Been Providing Security For Networked Devices For Years
ONEKEY has been researching cybersecurity vulnerabilities in networked devices and systems for years and operates a product cybersecurity and compliance platform that can be used as a SaaS application to perform automated testing and risk analysis of device software. Compliance with standards such as RED II is supported by monitoring the Software Bill of Materials (SBOM) for completeness and up-to-dateness, as well as vulnerability monitoring.
Preparation For Certification
The reports generated can also be used as the basis for self-declarations of conformity. New software versions can be automatically analysed within minutes, allowing documentation and declarations to be updated immediately.
The report, which presents all relevant information in a structured way, is often the first step towards certification. By easily exporting the analysis, structured data and supporting documentation, external certification bodies can carry out any subsequent certification more efficiently and quickly.
ONEKEY is the leading European specialist in Product Cybersecurity & Compliance Management and part of the investment portfolio of PricewaterhouseCoopers Germany (PwC). The unique combination of the automated ONEKEY Product Cybersecurity & Compliance Platform (OCP) with expert knowledge and consulting services provides fast and comprehensive analysis, support, and management to improve product cybersecurity and compliance from product purchasing, design, development, production to end-of-life.
Critical vulnerabilities and compliance violations in device firmware are automatically identified in binary code by AI-based technology in minutes - without source code, device, or network access. Proactively audit software supply chains with integrated software bill of materials (SBOM) generation. "Digital Cyber Twins" enable automated 24/7 post-release cybersecurity monitoring throughout the product lifecycle.
The patent-pending, integrated Compliance Wizard™ already covers the EU Cyber Resilience Act (CRA) and requirements according to IEC 62443-4-2, ETSI EN 303 645, UNECE R 155 and many others.
The Product Security Incident Response Team (PSIRT) is effectively supported by the integrated automatic prioritisation of vulnerabilities, significantly reducing the time to remediation.
Leading international companies in Asia, Europe and the Americas already benefit from the ONEKEY Product Cybersecurity & Compliance Platform (OCP) and ONEKEY Cybersecurity Experts.
Weitere Informationen: ONEKEY GmbH, Sara Fortmann, E-Mail: sara.fortmann@onekey.com, Kaiserswerther Straße 45, 40477 Düsseldorf, Deutschland, Web: www.onekey.com PR-Agentur: euromarcom public relations GmbH, Mühlhohle 2, 65205 Wiesbaden, Deutschland, E-Mail: team@euromarcom.de, Web: www.euromarcom.de
- - - -