Společnost Yaskawa nabízí portfolio produktů, díky kterým je předním výrobcem v oblasti měničů střídavého proudu, servopohonů, řídicí technologie a robotiky.
Cyber Resilience Act and Yaskawa
Secure with Yaskawa
The European Union has taken a significant step toward strengthening cybersecurity in industrial environments with the “Cyber Resilience Act”. Implementation includes a broad spectrum of measures, ranging from specific design requirements and cybersecurity documentation to vulnerability management processes.
Yaskawa attaches great importance to the quality of its products and ensures that all relevant products are compliant to the requirements. Accordingly, we have planned and already started implementing product modifications to comply with the EU Machinery Regulation and EU Cyber Resilience Act.
To ensure a responsible disclosure process, we collaborate with our trusted partner, CERT@VDE
About the Cyber Resilience Act
The Cyber Resilience Act enhances cybersecurity standards of products that contain a digital component, requiring manufacturers and retailers to ensure cybersecurity throughout the lifecycle of their products.
The CRA introduces mandatory cybersecurity requirements for manufacturers and retailers, governing the planning, design, development, and maintenance of such products. These obligations must be met at every stage of the value chain. The act also requires manufacturers to provide care during the lifecycle of their products. Some critical products of particular relevance for cybersecurity will also need to undergo a third-party assessment by an authorised body before they are sold in the EU market. CRA will be fully enforced starting 11.12.2027. Vulnerability reporting obligations start on 11 September 2026, which Yaskawa will fulfill accordingly.
Website from European Commission about CRA: Cyber Resilience Act | Shaping Europe’s digital future
About the Machine Directive
The Directive
- promotes the free movement of machinery within the single market
- guarantees a high level of protection for EU workers and citizens
As it is a 'new approach' directive, it promotes harmonisation through a combination of mandatory essential health and safety requirements and voluntary harmonised standards reflecting the state-of-the-art. The Directive applies to products that are placed on the EU market for the first time or when existing machinery is modified to such extent that it becomes de facto new machinery. It will be fully enforced starting 20.01.2027.
Website from European Commission about Machinery Directive: EU machinery legislation
Product Security Incident Response
Yaskawa places the highest priority on the safety and reliability of our customers’ products, equipment, and information, as well as our own products. We strive to ensure cybersecurity through early detection of product vulnerabilities and timely, appropriate response. Product security is considered an essential component of product quality, and we work to protect information assets throughout the product lifecycle based on the following policy.
As part of our product security system, we have established a Product Security Incident Response Team (PSIRT) to manage and respond to vulnerability information related to our products. We also coordinate with the Corporate Security Incident Response Team (CSIRT) to support organization-wide response.
Reported vulnerabilities and incidents are analyzed to determine their impact on our products. If an impact is identified, we evaluate mitigation options and prepare corrective actions such as correction procedures, software updates, or workarounds. Relevant information is published on the “Product Security Advisories” page.
Product Security System
The product security system is managed by the Chief Product Officer. Business unit–level PSIRTs are established within each business unit to ensure an organized and coordinated response. The product security system is structured as follows:
