17 March, 2026
16:00
17 March, 2026
17:00
CET (UTC +1)
Amsterdam/Brussels/Paris
17 March, 2026
16:00-17:00
CET (UTC +1)
Amsterdam, Brussels, Paris
The Cyber Resilience Act (CRA) introduces mandatory cybersecurity requirements for all digital products placed on the European market. The use of the voluntary CRA harmonized standards will be a way to establish conformity with the CRA. This webinar introduces EN 50764, the candidate CRA harmonized standard dedicated to platforms of smartcards and secure elements.
The European Cyber Resilience Act (CRA) establishes a unified regulatory framework to ensure that digital products placed on the EU market meet defined cybersecurity requirements throughout their lifecycle. It introduces mandatory obligations for secure development, vulnerability handling, risk management, and post-market surveillance.
To support CRA compliance, harmonized standards play a central role by translating regulatory requirements into technical and operational specifications.
Smartcard platforms and secure elements are foundational components in many critical and high-assurance systems, including identity, payment, telecommunications, and industrial applications. Given their role in protecting sensitive assets, these products are subject to stringent security expectations under the CRA. EN 50764 has been developed as a candidate vertical harmonized standard to provide a structured and consistent approach for demonstrating CRA conformity for platforms of smartcards and secure elements.
Agenda
Agenda
Who should attend?
This webinar is intended for professionals involved in the design, development, assessment, or certification of smartcard‑based products and secure elements, including manufacturers, security architects, compliance and certification managers, R&D and engineering teams, and standardization or regulatory specialists.
Speakers
Xavi Castells, Brightsight
Technology Strategy Coordinator
Xavi currently serves as Technology Strategy Coordinator at Brightsight, where he is responsible for defining and implementing the company’s strategy for compliance with the Cyber Resilience Act, with a strong focus on harmonisation, IoT security, and regulatory alignment.
With nearly 20 years of experience in embedded security, he has a well balanced understanding of the technical challenges faced by product developers, as well as the business constraints related to certification processes and market access. This dual perspective has shaped his long term involvement in security assurance, certification, and standardisation activities.
Xavi represents Brightsight in SESIP and PSA working groups within GlobalPlatform and actively participates in discussions of the JHAS. He is also involved in European standardisation, contributing to ETSI and CEN/CENELEC groups, including TC 47X WG2.
Mariela Pavlova, Infineon
Expert in product cybersecurity certification and standardisation
Dr Mariela Pavlova is an expert in cyber security verification and certification with the Common Criteria standard of embedded software and secure hardware for domains like government identity and payment. In the past years she has focused on the standardisation related to the EU product cyber security regulations. She has actively contributed to the harmonized standardisation of the EU RED DA. Currently she is involved in the standardisation at CEN/CENELEC dedicated to the EU CRA. She is the convenor of the CENELEC group in TC47X developing the CRA standard for platforms of smart cards and similar devices including secure elements.
Xavi Castells, Brightsight
Technology Strategy Coordinator
Xavi currently serves as Technology Strategy Coordinator at Brightsight, where he is responsible for defining and implementing the company’s strategy for compliance with the Cyber Resilience Act, with a strong focus on harmonisation, IoT security, and regulatory alignment.
With nearly 20 years of experience in embedded security, he has a well balanced understanding of the technical challenges faced by product developers, as well as the business constraints related to certification processes and market access. This dual perspective has shaped his long term involvement in security assurance, certification, and standardisation activities.
Xavi represents Brightsight in SESIP and PSA working groups within GlobalPlatform and actively participates in discussions of the JHAS. He is also involved in European standardisation, contributing to ETSI and CEN/CENELEC groups, including TC 47X WG2.
Mariela Pavlova, Infineon
Expert in product cybersecurity certification and standardisation
Dr Mariela Pavlova is an expert in cyber security verification and certification with the Common Criteria standard of embedded software and secure hardware for domains like government identity and payment. In the past years she has focused on the standardisation related to the EU product cyber security regulations. She has actively contributed to the harmonized standardisation of the EU RED DA. Currently she is involved in the standardisation at CEN/CENELEC dedicated to the EU CRA. She is the convenor of the CENELEC group in TC47X developing the CRA standard for platforms of smart cards and similar devices including secure elements.
