How prepared is your vulnerability handling? 你的弱點處理準備到哪了?
prEN 40000-1-3 — the harmonised standard draft being prepared to support CRA Article 13(8) — has 25 requirement groups across six phases. The preparation phase carries 10 of them. This 10-question self-assessment maps to PRE-1 through PRE-10. The purpose is to know where you stand against the draft, not to certify CRA compliance. prEN 40000-1-3,為支援 CRA 第 13(8) 條而準備的調和標準草案,有 25 個 requirement group、分布在六個階段。準備階段佔 10 個。這份 10 題自我評估對應 PRE-1 到 PRE-10。目的是讓你知道自己對這份草案的準備度落在哪裡,不是 CRA 合規驗證。
What CRA actually requires. The legal vulnerability handling obligations sit in CRA Annex I Part II — 8 points, not 25. Article 13(8) requires manufacturers to handle vulnerabilities effectively across the support period, in line with those 8 points. That is the law. CRA 真正要求什麼。法定的弱點處理義務在 CRA 附件一第二部分,8 點,不是 25 點。第 13(8) 條要求製造商於支援期間內有效處理弱點,依循那 8 點。那是法律。
What prEN 40000-1-3 is. A harmonised standard draft, currently working through the CEN-CENELEC process. Once it is published in the Official Journal of the European Union, products that follow it will benefit from presumption of conformity with Annex I Part II under CRA Article 27. Until OJEU publication, no presumption of conformity attaches. prEN 40000-1-3 是什麼。一份調和標準草案、目前在 CEN-CENELEC 流程中。一旦公告於《歐洲聯盟公報》(OJEU),依循該標準的產品將依 CRA 第 27 條享有對附件一第二部分的推定符合。OJEU 公告之前、無推定符合效力。
What this assessment scores. Your readiness against the prEN draft's 10 PRE requirements. A score of 20/20 means you are well-prepared for the future hEN once it is published — it does not equate to "CRA-compliant". Compliance is determined through formal conformity assessment per Article 32, not a self-test. 這份評估在打分什麼。你對 prEN 草案 10 個 PRE 需求的準備度。20/20 滿分代表你對未來 hEN 公告後做了充分準備,不等同「符合 CRA」。合規是透過第 32 條的正式符合性評鑑判定,而非自我測驗。
Item-by-item 逐項對照
| ID | Requirement需求 | Status狀態 |
|---|