OCCTET Project

OCCTET PROJECT

Open CyberSecurity Compliance Toolkit

Our mission is to empower SMEs with accessible, efficient, and secure solutions for OSS integration.

The OCCTET project (Open Source Compliance Comprehensive Tools and Resources) is an EU-funded initiative aimed at improving cybersecurity and compliance with the Cyber Resilience Act (CRA) for Small and Medium Enterprises (SMEs). The project focuses on creating an open-source toolkit to automate the compliance process for Free and Open Source Software (FOSS) used in digital products.

This toolkit is intended to provide a comprehensive suite of tools and resources tailored to the needs of SMEs:

Compliance Checklist
Conformity Assessment Specifications
Automated Evaluation Method and Tool
Federated Database platform for publishing the results of OSS component assessments allowing contributions from various stakeholders
Inventory of Automatic Dependency Analysis Tools
Reporting tool

Learn More

News

View All

OCCTET Needs Analysis Workshop

Monday, March 31, 2025

The Cyber Resilience Act (CRA) introduces new cybersecurity requirements for digital products, impacting SMEs, open-source developers, and software vendors across Europe. As compliance deadlines approach, many SMEs face uncertainty about how to meet these obligations, what tools to use, and what steps to take.

As part of its mission to simplify CRA compliance, OCCTET is hosting a Needs Analysis Workshop to gather insights from SMEs and key stakeholders. The goal is to identify compliance challenges, assess cybersecurity preparedness, and ensure that the OCCTET open-source toolkit is built to address real SME needs.

Agenda

Introduction to the OCCTET Project & Toolkit - Mikael Barbero (Eclipse Foundation)
Needs Analysis Miro Board Session - Davide Iaccarino (European DIGITAL SME Alliance)
Conclusion and Q&A

What to Expect from the Workshop

Introduction to OCCTET: Learn about the project’s mission, its objectives, and how it will help SMEs comply with the CRA.
Overview of the OCCTET Toolkit: Discover how the open-source compliance toolkit will support SMEs in managing cybersecurity risks and regulatory requirements.
Interactive MIRO Board Session: Engage in a collaborative discussion to map SME challenges and define the key features that the toolkit should include.
Q&A & Discussion: Share your thoughts, ask questions, and contribute directly to the project’s development.

This workshop is a key opportunity for SMEs to voice their challenges and influence the development of practical tools that will help them meet CRA requirements. By participating, you will be helping shape an accessible, open-source compliance solution tailored to SME needs.

Webinar - The Cyber Resilience Act and the Open-Source Community: Understanding the Impact and Managing Compliance

Monday, January 27, 2025

On 27 January 2025, OCCTET hosted a webinar diving into the Cyber Resilience Act (CRA) and its impact on SMEs, open-source community, and the broader digital landscape. With expert insights from our partners at the Eclipse Foundation, as well as contributions from the European Cyber Security Organisation (ECSO), the session explored the challenges and opportunities the CRA presents for open-source security and compliance.

The discussion covered key aspects of the CRA, including its new requirements for digital products, what it means for open-source developers, and how SMEs can navigate compliance more effectively. As part of OCCTET’s mission to support businesses in adapting to these changes, we also introduced how our open-source compliance toolkit will help SMEs meet CRA obligations with practical, accessible solutions.

Upcoming Events

View All

Academic Standards Day 2025

Friday, Mar. 21, 2025

How ICT standards contribute to a safer future - Keynote: CRA/DORA/NIS2 compliance with FOSS tooling: insights from the OCCTET project

OCCTET Needs Analysis Workshop

Monday, Mar. 31, 2025 | 11:00 - 12:00 CET

Workshop designed to gather insights from SMEs and key stakeholders on the CRA compliance challenges.

OCCTET Needs Analysis Workshop

Monday, Mar. 31, 2025 | 11:00 - 12:00 CET

Workshop designed to gather insights from SMEs and key stakeholders on the CRA compliance challenges.

Forum InCyber Europe 2025

April 01-03, 2025

Meet Red Alert Labs partner

Cybersecurity Europe 2025

May 21-22, 2025

Meet Expertware partner

Info Security Europe 2025

June. 03-05, 2025

Meet Expertware partner

Cyber Security Expo 2025

Sept. 24-25, 2025

Meet Expertware partner

Bucharest Security Conference 2025s

Oct. 29-30, 2025

Meet Expertware partner

Partners

OCCTET represents a major step toward strengthening cybersecurity compliance in Europe, especially for SMEs struggling to navigate CRA requirements. Given our expertise in IoT security and product certification, we see this project as an opportunity to bridge the gap between regulation and real-world implementation. By supporting the development of tools that make compliance more accessible and automated, we contribute to a more secure digital ecosystem while supporting innovation and market growth.

Ayman KHALIL - COO @RedAlertLabs

Ayman KHALIL / COO @RedAlertLabs, Red Alert Labs

OCCTET allows us to ensure and further develop our service to meet the requirements of the SME sector, as opposed to large organizations. SMEs are by far the largest users of software, whether as such or in devices. Further, we expect to partner with other OCCTET members to offer together holistic CRA compliance services, where Double Open's role is in automated analysis and management, and it complements by services of others.

Ayman KHALIL - COO @RedAlertLabs

Martin von Willebrand / Chair of the Board of Directors @DoubleOpen, Double Open

Get Engaged

Join the OCCTET Newsletter is your destination for original articles about the project and key technologies.