Valtteri Kinnunen
Back to blog
11 min read

The EU Cyber Resilience Act: What it Means for HPC

Table of Contents

I recently grabbed coffee with a buddy who designs hardware partitions for supercomputers. He looked like he’d been run over by a fleet of DGX clusters. I figured he was debugging a massive Lustre split-brain or a broken InfiniBand network. Instead, he just whimpered: “The EU is coming for my switches.”

He was talking about the European Union Cyber Resilience Act (CRA).

For decades, HPC has been a beautiful, lawless playground. While web devs were busy installing 40GB of node_modules to run a static blog, or deploying Kubernetes clusters just to host a basic CRUD API, HPC engineers were worshipping at the altar of raw speed. We bypass the kernel to shave off microseconds, run multi-petabyte filesystems with zero authentication because “security slows down reads,” and pass around duct-taped Fortran scripts like it’s 1995.

That lawless party is over. The EU’s Cyber Resilience Act (CRA) wants to regulate everything from internet-connected smart toasters to enterprise SaaS. Unfortunately, the bureaucrats wrote the definitions so broad that our multi-million dollar scientific clusters are about to get hit like a freight train.

Here’s how this bureaucratic trainwreck is going to mess up your architecture, ruin your latency, and force you into a mountain of compliance theater.

The Open-Source Paradox in Parallel Computing

HPC is basically a house of cards built on open-source software. Everything from Slurm to Lustre is maintained by tired academics or underfunded community groups.

The EU tried to play nice by exempting open-source code built “outside the course of a commercial activity.” Cute. But the line between “pure academic research” and “making a profit” in HPC doesn’t exist:

  • Public-Private Partnerships: National supercomputing centers get government funding, but they also rent out compute time to big pharma or automotive giants so they can simulate crashes or discover drugs.
  • Commercial Support & Appliances: We love buying open-source software wrapped in expensive enterprise support. You’re running Lustre, but you bought it from DDN under a fancy name like EXAScaler.
  • The “One Drop” Commercial Rule: If your cluster runs even a single paid commercial simulation, the entire stack—compilers, MPI layers, scheduler—might suddenly trigger the “commercial activity” clause.

Once you cross that line, you have to carry the compliance bag. That means putting a CE mark on software (yes, really), running endless conformity audits, and filing reports to Brussels.

This is a liability nightmare. If you maintain a niche MPI library in your spare time, and a major cluster uses it for a commercial client, you could theoretically be on the hook for compliance standards you can’t afford. The likely outcome? HPC sites will panic-dump free community tools for slower, proprietary enterprise garbage just to cover their legal behinds.

Conformity Assessment Hurdles: Article 32 & Annex VIII

Your level of bureaucratic suffering is determined by Article 32, which categorizes software into risk tiers. If you thought NIS2 was a headache, welcome to the sequel.

High-Speed Interconnect Fabric

Parallel Storage Network

Cluster Control Plane

User Execution Space

Link

Run

Job Submission

Configure Fabric

Bypass Kernel

I/O Requests

LNet Protocol

User App (MPI / PyTorch)

Spack / EasyBuild Compiler

Apptainer / Singularity

Slurm Workload Manager

(Setuid / Root plugins)

InfiniBand Subnet Manager

(Unauthenticated Control)

Lustre LNet Client

Lustre Object Storage Servers

(No Cryptographic Auth by default)

RDMA Network (InfiniBand / RoCE)

(Kernel-Bypass, Direct Memory Access)

Article 32.2: Class I (The “Self-Inflicted Paperwork” Tier)

If your software falls under Class I (routers, identity management, etc.), you have two choices:

  • Run the internal control procedure (Module A) from Annex VIII Part 1, OR
  • Pay for expensive third-party audits under Module B + C or Module H.

Choosing Module A isn’t a free pass. You still have to generate mountains of technical documentation (Annex VII) and implement strict design-to-production vulnerability workflows (A8.P1.3). It’s audit theater, but you have to write the script.

Article 32.3: Class II (The “Auditor Ransom” Tier)

If you develop operating systems, hypervisors, or critical tools like Apptainer / Singularity, self-assessment is banned. You must use:

  • EU-Type Examination (Module B) plus Conformity to Type (Module C), OR
  • Full Quality Assurance (Module H).

This means paying a government-approved auditor to read your code, critique your architecture (A8.P2.1), and run recurring audits (A8.P2.8) on your team’s code updates. For academic folks keeping HPC container engines alive, prepare to spend more time explaining your code to auditors than actually writing it.

Article 32.5: The 10-Year Paper Trail

In the CRA era, you can’t just push a hotfix to production. You have to document the change, update your EU Declaration of Conformity (Annex V / A5 and Annex VI / A6), and archive the whole paper trail for 10 years. All of this will be policed by National Competent Authorities (Article 52.1). Yes, the government wants to audit your Slurm config.

The Security-by-Design Dilemma: Performance vs. Protection

HPC architecture has a simple philosophy: “Security is a performance tax.” We deliberately disable security to squeeze out every last drop of throughput. The CRA’s “security-by-design” mandate is about to collide head-on with physics.

1. Kernel-Bypass Networking (RDMA)

TCP/IP is too slow, so we use Remote Direct Memory Access (RDMA) over InfiniBand or RoCE. We literally bypass the kernel and write directly to the physical RAM of a remote node.

Security? We have a couple of unencrypted keys (P_Keys/rkeys) floating around the fabric. If a rogue job snoops the network, it can manipulate the memory of another node directly. If EU regulators decide this unauthenticated memory access is a security vulnerability, we’ll be forced to encrypt RDMA at the hardware level (using MACsec or IPsec). That will immediately destroy our ultra-low latency, turning our expensive supercomputers into glorified, overpriced web servers.

2. Parallel Filesystems: Security on Blind Trust

If you’ve ever dealt with Lustre, you’re familiar with the constant dread of metadata crashes and split-brain disasters. To keep throughput high, Lustre’s LNet protocol relies on pure, unadulterated trust. If a compute node claims, “I’m User 1001,” the Metadata Server says “cool” and hands over the data.

Get root access on one node, and you can spoof Network Identifiers (NIDs) to read whatever you want. To satisfy the CRA, we’d need to enable cryptographic authentication (GSS/Kerberos). But running crypto on parallel I/O will eat CPU cycles like popcorn, tanking read/write speeds by 30% to 50%.

3. The Death of Scratch Performance (A1.P1.2m)

Under Annex I, Part I, point 2m (A1.P1.2m), users must be able to securely and permanently wipe all their data and settings.

In HPC, we do not zero out scratch NVMe arrays when a job finishes. If we did, the storage controllers would melt and write performance would die. We just free the metadata pointers and let the next job overwrite the raw blocks. If we’re forced to run cryptographic shredding or sector-zeroing after every run to satisfy A1.P1.2m, we might as well go back to storing data on tape.

The Software Bill of Materials (SBOM) and the Compilation Dilemma

Annex I, Part II (A1.P2.1) demands a machine-readable Software Bill of Materials (SBOM) for everything.

Web devs can just run npm audit or scan a Docker image and pretend they’re secure. In HPC, our compilation stack is a chaotic mess:

  • Custom Builds from Source: We don’t use generic pre-built binaries. We compile everything from scratch using Spack or EasyBuild, optimization flags (-O3 -march=native), and specific MPI flavors. A single scientific tool can have dozens of different builds.
  • The Academic Dependency Hell: A single researcher’s home directory is a graveyard of custom-compiled Fortran and C++ libraries built on a house of cards. They assume their code is “production-ready” because it ran once without segfaulting.
  • The Liability Boundary: If an admin hosts a cluster where a commercial client runs a job, who is liable when a researcher’s custom-compiled Spack library leaks data or contains an unpatched CVE from 2012? The admin? The university? The author of the package who died in 2008?

The Vulnerability Handling and Update Mandates

The vulnerability patching schedules mandated by Annex I, Part II are going to shock HPC admins accustomed to updating their OS once every solar eclipse:

  • A1.P2.2 (Security vs. Features): You must deliver security patches separately from feature updates. Good luck. In scientific computing, trying to patch a library without changing its ABI/API is almost impossible. A simple security fix will break compatibility and force you to recompile the entire dependency tree.
  • A1.P2.5 (Coordinated Disclosure): You must establish a formal channel for reporting vulnerabilities. Because nothing says “world-class security” like a security.txt file pointing to a dead university inbox.
  • A1.P2.8 (No Paywalls for Patches): Security patches must be provided free of charge, unless you have a custom contract saying otherwise. Hopefully, this puts an end to enterprise vendors charging exorbitant maintenance premiums just to fix their own broken code.
  • The 24-Hour Narc Rule: If you discover a vulnerability being actively exploited, you have 24 hours to report it to ENISA. In academic computing, it takes 24 hours just to get the relevant sysadmin to check their email, let alone diagnose an exploit.

The Integration and User Information Burden (Annex II & VII)

Supercomputers are built from a massive collection of proprietary components. We buy chassis from HPE or Lenovo, slap in Intel/AMD CPUs, load up on ridiculously expensive NVIDIA GPUs (because we love vendor lock-in), connect them with Mellanox switches, hook up DDN storage arrays, and run RHEL.

Under Annex II (A2) and Annex VII (A7), the CRA forces this supply chain to share their homework:

  • A2.8(f) (Integrator Documentation): Component vendors must provide integrators with the detailed specifications and instructions needed to make the whole system compliant. If a proprietary switch vendor refuses to document their firmware, the main integrator can’t compile the overall Technical Documentation (A7) or legally declare conformity.
  • A2.7 (Support Period Disclosure): You must explicitly define exactly how long you will support the system with security updates. Good luck getting a straight answer on that from hardware vendors who want you to upgrade every three years.
  • A7.3 (Risk Assessments): Integrators must document a thorough threat model showing how the system stands up to security risks from the factory floor to the datacenter floor.

If vendors won’t supply this compliance paperwork, they won’t even be allowed to bid on public supercomputer tenders. Expect massive legal fights over who owns the liability for undocumented proprietary firmware.

Adapting the HPC Platform for the CRA Era

If you’re designing HPC systems, you need to start planning for this regulatory wall today. Here’s how we might survive:

  1. Strict Partitioning: Separate academic and commercial workloads completely. Put the commercial users in a compliant, CE-marked hardware partition. Let the academics run their wild, unauthenticated experiments in their own sandbox so they don’t drag the whole facility into an audit.
  2. Confidential VMs: Use AMD SEV-SNP, Intel TDX, or NVIDIA’s eye-wateringly expensive Confidential VMs. Encrypting data in RAM and across the PCIe bus lets you treat the underlying OS and scheduler as untrusted, shielding them from some compliance scope.
  3. Automate SBOMs in Spack: Force Spack or EasyBuild pipelines to automatically generate SPDX/CycloneDX SBOMs on every compilation. If researchers are going to build software houses of cards, at least make sure you have a machine-readable list of all the cards.
  4. Firmware Escrows: Never sign an HPC contract without securing 7+ years of security update commitments. If your fabric vendor goes bankrupt or decides to discontinue support for your fabric switches, you’ll be left with a multi-million dollar pile of non-compliant e-waste.

Wrapping Up

The Cyber Resilience Act is the end of the lawless, security-exempt era of supercomputing. We can no longer pretend that security doesn’t apply to us because our workloads are “scientific.” Compliance is about to become as much of a design constraint as memory bandwidth. It’s going to be painful, expensive, and full of bureaucracy, but the alternative is explaining to a government auditor why your unauthenticated cluster just leaked proprietary drug designs.

How the EU Cyber Resilience Act Affects IoT Manufacturers: A Technical Guide