Sep. 26 2023

New digital technologies mean increased digital risks. That is why the European Parliament approved new machinery regulation, on April 18, 2023. It will replace the previous Machinery Directive 2006/42/EC.

Unlike the previous directive, the new regulation applies not only to new machines, but also to machines that have undergone modifications that were not planned by the manufacturer, or modifications that might affect the safety of the machine.

Digital components

The regulation also focuses on the security of digital components of machinery. For example: if a machine uses artificial intelligence, manufacturers will have to conduct risk assessments to test the level of autonomy of the machine, its learning phase and special control for autonomous mobile machines ( AGVs).

The new machinery legislation is expected to be published soon in the Official Journal of the European Union. It will come into force 20 days after publication. Companies have 42 months to comply after its publication.

Cybersecurity risks

Cybersecurity is an integral part of this new machinery regulation, not only regarding all major aspects of the machine as a product but also relating to hardware and software components.

The introduction of the Cybersecurity requirement stems from a need to address rising cybersecurity risks. It is meant to help prevent malicious cyberattacks that can have highly negative impacts on machine safety.

How Bureau Veritas can help you

The Bureau Veritas Group (BV) can help you prepare for compliance with this new regulation. We have more than 20 years’ experience in cybersecurity and extensive knowledge of the manufacturing industry. We work with some of the largest manufacturers in the world, helping them achieve compliance with all kinds of laws and regulations.

For instance, BV is a market leader in IEC 62443 – both in advisory and certification. We have Certified Testing Laboratories (CBTL) in Europe and Asia and are a notified Certification Body. We work with both ISA Secura and IECEE certification schemes and are able to issue certificates under both. Our experts also help vehicle manufacturers comply with UNECE cybersecurity regulations.

In our experience, achieving cybersecurity maturity requires strengthening the resilience of your processes (for instance: complying with regulations), technology (your choice of HW, SW and services) and your people (secure behaviour).

Get ready for the new machinery regulation contact us for expert advice.