Linkedin

About

CONFIRMATE is a European cybersecurity project that started in January 2025 and is being implemented with the coordination of the Italian Chamber of Commerce for Germany, in collaboration with the Fraunhofer AISEC(Germany), CYEN(Belgium) and Directoratul Național de Securitate Cibernetică (Romania).

The upcoming EU Cyber Resilience Act (CRA) introduces a revolutionary approach to regulating cyber security in Europe. The broad cross-sectoral scope and detailed secure development, vulnerability management throughout the product life cycle, as well as incident and threat notification are new for manufacturers and SMEs globally.

A robust framework, resources, support, and, inevitably, the development of automation tools are prerequisites for the success of the regulatory objective. CONFIRMATE centers around designing and developing a suite of comprehensive open-source tools supported by several instruments (marketing, policy analysis materials) to facilitate and automate compliance with the Cyber Resilience Act (CRA).

The primary focus is creating automated solutions aligned with CRA cybersecurity’s essential requirements and documentation obligations. These solutions will encompass tools and methodologies to support the conformity assessment, technical specifications in the form of guidance, and training courses. Additionally, methodologies for penetration testing and other cybersecurity practices in adherence to CRA requirements will be developed.

Objectives

  • Design and Develop Open-Source Tools:
    Create a comprehensive suite of open-source tools to help the target audience automate and facilitate compliance with the Cyber Resilience Act (CRA).
  • Automate Conformity Assessment:
    Focus on the development of automated solutions that support conformity assessment, making it easier for businesses to meet the CRA’s cybersecurity requirements and documentation obligations.
  • Develop Guidelines and Training Materials:
    Provide detailed technical specifications, guidance, and training modules that help users implement the CRA's cybersecurity standards.
  • Penetration Testing Methodology:
    Develop methods and best practices for penetration testing, ensuring these practices adhere to the CRA's requirements and improving overall cybersecurity resilience.
  • Support Compliance for SMEs:
    Ensure that small and medium-sized enterprises (SMEs) can easily implement compliance with the CRA, even with limited resources.

Co-funded by the European Union. Views and opinions expressed are however those of the author(s) only and do not necessarily reflect those of the European Union or the European Cybersecurity Competence Centre. Neither the European Union nor the granting authority can be held responsible for them.

Project Number: 101190193

©2025 –CONFIRMATE |  handcrafted & powered with ❤️ by p-consulting.gr