News from the Wire

ONEKEY puts product cybersecurity front and center at Embedded World

Thursday, March 05, 2026 — 16:15:22 (UTC)

ONEKEY Puts Product Cybersecurity Front and Center at Embedded World

Düsseldorf-based cybersecurity company ONEKEY presents its automated product cybersecurity & compliance platform Time is running short as the Cyber Resilience Act (CRA) will begin directly impacting manufacturers of digital products from 2026 onward. Düsseldorf, March 5, 2026 – Düsseldorf-based cybersecurity company ONEKEY will be demonstrating at Embedded World (booth 5-372) how product cybersecurity and compliance for embedded systems can be implemented continuously and automatically in a holistic, centralized solution. Embedded World in Nuremberg is considered the leading international meeting place for the embedded systems industry.

Jan Wendenburg, the CEO of ONEKEY, said: "With the official implementation of the EU Cyber Resilience Act on December 10, 2024, time is running out for the embedded industry. Manufacturers are required by law to take specific measures to ensure the cyber resilience of their connected devices throughout their entire product lifecycle, as well as document these measures. We developed our platform to help the industry meet these requirements."

Strengthening Cybersecurity and Compliance

The ONEKEY platform increases product cybersecurity and compliance, simplifies processes, and reduces effort and costs significantly. The company's ONEKEY Compliance Wizard ensures that embedded systems comply with current regulatory requirements and prepares them for audits. Additionally, the platform automates the creation and continuous maintenance of the Software Bill of Materials (SBOM) to ensure complete transparency regarding the software components used. Integrated vulnerability management analyzes, evaluates, and prioritizes relevant vulnerabilities to address risks in a targeted and efficient manner.

Manufacturers of embedded systems are running out of time to bring their networked systems into compliance with the new EU security standard, the Cyber Resilience Act (CRA). After the transition periods expire, manufacturers will only be allowed to place connected devices, systems, and equipment on the EU market if they can demonstrate continuous vulnerability management, documented security processes, and ongoing monitoring of their software and firmware components throughout the entire product lifecycle.

CRA Fast Start: A Solid Foundation for CRA Compliance

ONEKEY has put together a special offer called "CRA Fast Start," which is based on the following pillars: CRA Readiness Assessment, creation of Software Bills of Materials (SBOMs) as a solid foundation for permanent CRA compliance, systematic vulnerability management, and continuous monitoring. The first step is to analyze a company's level of maturity in relation to CRA requirements. This analysis provides a basis for identifying compliance gaps and defining prioritized action steps. Continuous monitoring ensures transparency and the early detection of new risks, as well as sustained compliance with CRA requirements. New vulnerabilities, affected libraries, and security-related changes are recorded continuously. This creates permanent transparency regarding the security status of digital products.

Jan Wendenburg explained the offering, saying, “With CRA Fast Start, we enable manufacturers to systematically and quickly achieve the CRA compliance required by law.” He added: “Ultimately, it's not just a matter of meeting mandatory legal requirements; it's also about making their product range truly resilient to cyberattacks. After all, every vulnerability that is exploited poses legal and reputational risks."

ONEKEY is the leading European specialist in Product Cybersecurity & Compliance Management and part of the investment portfolio of PricewaterhouseCoopers Germany (PwC). The unique combination of the automated ONEKEY Product Cybersecurity & Compliance Platform (OCP) with expert knowledge and consulting services provides fast and comprehensive analysis, support, and management to improve product cybersecurity and compliance from product purchasing, design, development, production to end-of-life.

Critical vulnerabilities and compliance violations in device firmware are automatically identified in binary code by AI-based technology in minutes – without source code, device, or network access. Proactively audit software supply chains with integrated Software Bills of Materials (SBOMs) generation. "Digital Cyber Twins" enable automated 24/7 post-release cybersecurity monitoring throughout the product lifecycle.

The patent-pending, integrated ONEKEY Compliance Wizard already covers the EU Cyber Resilience Act (CRA) and requirements according to IEC 62443-4-2, ETSI EN 303 645, UNECE R 155 and many others.

The Product Security Incident Response Team (PSIRT) is effectively supported by the integrated automatic prioritisation of vulnerabilities, significantly reducing the time to remediation.

Leading international companies in Asia, Europe and the Americas already benefit from the ONEKEY Product Cybersecurity & Compliance Platform (OCP) and ONEKEY Cybersecurity Experts.

Further information: ONEKEY GmbH, Sara Fortmann, email: sara.fortmann@onekey.com, Toulouser Allee 19A, 40211 Düsseldorf, Germany, web: onekey.com

PR Agency: euromarcom public relations GmbH, Mühlhohle 2, 65205 Wiesbaden, Germany, email: team@euromarcom.de, web: www.euromarcom.de

Notice to readers: These are archived articles. Contact information, links and other details may be out of date. We regret any inconvenience.

Source: Company press release.

Categories: Announcement