Integrated ecosystem for machine safety and compliance

Bosch Rexroth develops BODAS, a security-by-design platform to ensure regulatory compliance and integrate cybersecurity, functional safety, and AI in off-highway vehicles.  www.boschrexroth.com The evolution of the European regulatory framework is redefining technical requirements for off-highway machine manufacturers, introducing structural obligations in cybersecurity, functional safety, and artificial intelligence governance. In this context, Bosch Rexroth positions the BODAS ecosystem as an integrated solution to support compliance across the entire product lifecycle. New regulatory requirements for connected machines The European regulatory landscape introduces new requirements that directly impact the design and commercialization of mobile machinery. The Machinery Regulation (EU 2023/1230), applicable from January 20, 2027, establishes specific requirements for software and safety components. The Cyber Resilience Act defines obligations for all products with digital elements, while the AI Act regulates artificial intelligence systems, including those used in safety-related functions. Compliance with these regulations becomes a prerequisite for access to the European market, requiring documented and verifiable risk and safety management throughout the product lifecycle. Emerging risks in off-highway machinery Modern machines used in construction, agriculture, and logistics integrate advanced electronics, wireless connectivity, and updatable software. This technological evolution increases exposure to cyber risks, including unauthorized access, software manipulation, and compromise of safety functions. In such environments, a cyberattack can directly affect physical safety, making the integration of cybersecurity and functional safety essential. Integration of cybersecurity and functional safety The required approach is based on security-by-design, where safety is embedded from the earliest design stages. This includes risk analysis (TARA), software bill of materials (SBOM) management, continuous vulnerability monitoring, and secure update mechanisms. The growing adoption of autonomous functions and AI-based systems, such as object recognition and collision avoidance, introduces additional requirements, requiring coordinated compliance with both the Machinery Regulation and the AI Act. BODAS ecosystem for integrated compliance The BODAS platform integrates hardware and software components designed to meet advanced security requirements. These include hardware security modules (HSM), secure boot, encryption, development processes aligned with ISO 21434, structured management of TARA and SBOM, as well as incident monitoring and vulnerability management. The ecosystem also supports secure over-the-air updates (OTA/FOTA) and solutions for autonomous applications and high-risk AI systems, enabling OEMs to implement scalable and compliant architectures. From compliance to competitive advantage Adopting integrated security solutions allows manufacturers not only to meet regulatory requirements but also to enhance system reliability and user trust. The ability to demonstrate software integrity, data protection, and resilience against cyber threats becomes a differentiating factor in an increasingly digitalized market. Industry implications With regulatory deadlines approaching, compliance becomes a critical factor for market access in Europe. The integration of cybersecurity, functional safety, and AI governance into off-highway machinery is no longer optional but a structural requirement, contributing to the development of an automotive data ecosystem extended to mobile machines. In this context, platforms such as BODAS support the transition toward more secure, scalable, and standards-aligned development models. Edited by Maria Brueva, Induportals editor – adapted by AI. www.boschrexroth.com Powered by Induportals Media Publishing