The EU Machinery Regulation (EU 2023/1230), which will apply from 14 January 2027, aims to modernize the assessment of cybersecurity vulnerabilities for all machines, whether newly constructed or substantially modified. Initially, the regulation may seem to be merely a continuation of the EU Machinery Directive (2006/42/EC) narrative. In contrast to its predecessor, it will be automatically applicable to all EU member states from the outset, establishing a cohesive and uniform regulatory framework for machine manufacturers within the EU.

However, beneath the technical facade of the regulation resides a deeper significance as Pekka Alasaari and Johanna Schüßler claim: It would also be a clarion call for enhanced cybersecurity awareness. According to the authors, the future of machine safety relies equally on security and robust steel, as they argue in their recently published article.