HMS Networks just made life a lot easier for industrial manufacturers dealing with the EU Cyber Resilience Act (CRA). Its Anybus Communicators are now CRA-ready, giving machine builders, system integrators, and factory owners a straightforward path to meet cybersecurity requirements for connected industrial products.
Why CRA changes everything for connectivity
Under the CRA, connectivity isn’t just a functional feature anymore it’s a regulated component.
That means products must support long-term security, secure updates, proper documentation, and compliance evidence throughout their entire lifecycle.
HMS Networks responded by upgrading its Anybus Communicator portfolio with enhanced hardware and software security features, all developed under IEC 62443-certified secure product development processes.
Hardware built for long-term security
The updated Anybus Communicators include several key hardware improvements:
Real-time clock with supercapacitor backup
Reliable timestamps for certificates, logs, and diagnostics even during extended power offs like weekend shutdowns.
Dedicated security chip
Cryptographic keys and sensitive data are stored securely, enabling strong encryption and protection against tampering.
Together, these upgrades create a stronger hardware foundation for secure operation and long-term lifecycle support under the CRA.
Software features that match CRA requirements
Secure configuration
Configuration access is protected via HTTPS, blocking man-in-the-middle attacks during commissioning and maintenance. Users manage their own certificates for secure setup across different environments.
Role-based access control
Password protection is enabled directly in the web interface. Every device ships with a unique default Admin password laser-marked on the product for first-time login.
Three standard roles keep access aligned with responsibility:
- Admin – full access
- User – slave network configuration
- Operator – read-only access
Controlled updates and lifecycle protection
The Anybus Communicator supports a controlled firmware lifecycle. On CRA-ready devices with updated hardware, safeguards prevent downgrading to pre-update firmware versions, ensuring CRA-relevant security capabilities can’t be removed.
Intellectual property protection
Machine and device builders can simplify configuration for end users while protecting their IP by hiding Master configuration details.
CRA-ready connectivity, out of the box
By integrating these hardware and software updates, the Anybus Communicator delivers CRA-ready connectivity right out of the box.
This helps device makers, machine builders, system integrators, and factory operators respond to growing cybersecurity, compliance, and purchasing requirements from their customers.
Manufacturers and integrators can continue relying on Anybus Communicators for both industrial network connectivity and cybersecurity. Units already in the field remain supported, while new units ship with CRA-ready hardware and software providing a clear, non-disruptive path to meet CRA and customer cybersecurity expectations.
HMS Networks builds and maintains connectivity, security tooling, and compliance throughout the product lifecycle, so customers don’t have to.
For many use cases, implementing an Anybus Communicator is the simplest, lowest-effort way to meet CRA expectations while preserving uptime, performance, and market access.
When can you get them?
CRA-ready Anybus Communicators start shipping in spring 2026 about 1.5 years before the Cyber Resilience Act is enforced.
Leadership Comment
“With the Cyber Resilience Act, cybersecurity becomes a purchasing requirement, not just a technical consideration,” said Fredrik Brynolf, Gateway Business Line Director at HMS Networks. “By making Anybus Communicators CRA ready, we help our customers reduce compliance effort and risk, while continuing to rely on a proven, industrial grade connectivity solutions.”
To Get The Full List of Anybus Gateways, CLICK HERE
To Know More About CRA, CLICK HERE
