top of page
Cyber Resilience Act
Harvest Now, Decrypt Later (HNDL): A Developer's Guide to the Quantum Threat Already Underway
HNDL is the practice of capturing today's encrypted data and decrypting it once quantum computers exist. This guide explains why security-conscious developers need to start their PQC migration in 2026, how Mosca's inequality maps HNDL exposure, and where to begin.
Sriram G
Apr 218 min read
EU Cyber Resilience Act (CRA) Compliance Guide: Part II
The EU Cyber Resilience Act transforms open-source and firmware security from voluntary practice to legal requirement. By December 2027, every organization building digital products must prove components are secure, traceable, and continuously maintained. SBOMs become mandatory under Article 10, firmware vulnerabilities must be disclosed to ENISA within 24 hours, and secure-by-design principles must be embedded across CI/CD pipelines. Compliance is now a competitive advantage
Ramkumar Sundarakalatharan
Nov 7, 20254 min read
Decoding the EU Cyber Resilience Act (CRA) : Part 1
The EU Cyber Resilience Act, enforceable December 2027, transforms cybersecurity from voluntary guidance to binding law. It mandates SBOMs, 24-hour vulnerability reporting to ENISA, and secure-by-design principles for all digital products sold in the EU. Penalties reach €15M or 2.5% of global turnover. Together with EO 14028 and NIST CSF 2.0, these frameworks make supply-chain transparency the new baseline for market access and customer trust.
Ramkumar Sundarakalatharan
Oct 26, 20254 min read
bottom of page