Connected Devices: Now Easily and Automatically Tested for Cybersecurity & Compliance

• The enhanced ONEKEY platform enables automated cybersecurity testing according to the Cyber Resilience Act, RED II (EN 18031-1), ETSI 303645 and many more standards.
• ONEKEY CEO Jan Wendenburg: “We are constantly expanding     and updating our automated cybersecurity testing with new standards.”

Duesseldorf, 18 March 2025 – The Product Cybersecurity and Compliance Platform from cybersecurity company ONEKEY now supports the RED II (EN 18031-1) standard, in addition to ETSI 303 645, the Cyber Resilience Act (CRA) and many more standards. This enhancement enables manufacturers and users to automatically identify software in their networked devices, machines, and systems that may not meet the requirements of these standards. "Our goal is to continuously expand the platform to automatically check for compliance with all major regulatory requirements, providing manufacturers and users with specific insights to resolve compliance issues faster and more efficiently," explained Jan Wendenburg, CEO of ONEKEY, outlining the company’s strategy.

The EU Commission's Cyber Resilience Act requires manufacturers to test their products for security vulnerabilities throughout their lifecycle and to fix them immediately if necessary. The Radio Equipment Directive (RED) is an EU regulation on electromagnetic compatibility and the efficient use of the radiofrequency spectrum. One of the key additions in the new version of RED II is the consideration of cybersecurity to protect equipment from cyber-attacks.

The Product Cybersecurity & Compliance Platform (OCP) functions as a comprehensive solution, ranging from managing a Software Bill of Materials (SBOM) and the vulnerability management required by RED II, to ONEKEY's Compliance Wizard. The patent-pending Compliance Wizard combines an automated cybersecurity check with a virtual assistant that guides companies through asimplified assessment of their technical cyber compliance. This enables a dialog-based status assessment followed by analysis and documentation, whichcan also be used to meet the growing documentation requirements in cybersecurity matters.

“The automated testing provided by our platform and Compliance Wizard makes it much easier for manufacturers to check their products' software for the latest legal requirements in terms of cybersecurity and to receive specific instructions in the event of an error," said Jan Wendenburg. He continued: “Any vulnerabilities are detected by the platform so that they can be addressed in a targeted manner. This creates cost-effective security.”