Application NoteNxp

AN14687: Ease CRA Compliance with MCX N

This application note explains how NXP MCX N microcontrollers help OEMs meet the EU Cyber Resilience Act (CRA) security requirements through built-in hardware security features.

View application note

Overview

AN14687 provides guidance for Original Equipment Manufacturers (OEMs) on using NXP MCX N series microcontrollers to satisfy the requirements of the European Union's Cyber Resilience Act (CRA). The document details the CRA regulatory framework, including its enforcement timeline starting December 2027 and the classification system for Products with Digital Elements (PDEs). It maps specific MCX N security capabilities, such as the EdgeLock Secure Assurance program and hardware-level security primitives, to the Essential Cybersecurity Requirements (ECRs) listed in Annex I of the CRA. The note assists developers in leveraging NXP's secure manufacturing processes and device features to support conformity claims and mitigate cybersecurity risks in connected devices.

Use Cases

EU Cyber Resilience Act (CRA) compliance mapping for embedded products
Implementing hardware-based security in industrial and consumer IoT devices
Risk assessment and mitigation for OEM digital products
Secure product development using MCX N microcontrollers

Topics

NXP MCX N

Cyber Resilience Act

CRA Compliance

MCX N94x

MCXNx4x

EdgeLock

IoT Security

EU Regulation 2024/2847

Embedded Security

AN14687

Referenced Parts

MCX N

NXP

This document addresses OEMs who want to understand how the MCX N series can facilitate the implementation of CRA requirements.

MCX N94x

NXP

For information on how to ensure that the firmware is secure and authenticated during OTA via SB3 files, see MCX N94x Over-The-Air (OTA) Update by Using SB3 File (document AN14166).

MCXNx4x

NXP

On MCXNx4x devices, on-the-fly encryption and decryption can be performed by the FlexSPI interface using PRINCE to store encrypted application code or data in an external flash device

MCX N	NXP	This document addresses OEMs who want to understand how the MCX N series can facilitate the implementation of CRA requirements.
MCX N94x	NXP	For information on how to ensure that the firmware is secure and authenticated during OTA via SB3 files, see MCX N94x Over-The-Air (OTA) Update by Using SB3 File (document AN14166).
MCXNx4x	NXP	On MCXNx4x devices, on-the-fly encryption and decryption can be performed by the FlexSPI interface using PRINCE to store encrypted application code or data in an external flash device