Skip to main content

Keeping Your Software Safe: How to Install Security Updates

Security updates are your first line of defense against new threats. Users need to know how to get them and install them promptly. The Cyber Resilience Act mandates you provide clear instructions on this (Annex II, point 8c).

Guiding the Update Process

For your software (apps, games, engines, libraries), you must explain:

  • How to Install Security-Relevant Updates:
    • Where do users find these updates? (e.g., through an in-app notification, your website, an app store).
    • What's the process for downloading and installing them? Is it automatic by default (as encouraged by Annex I, Part I, point 2c)? If so, how are users notified?
    • If manual installation is required or an option, what are the exact steps?
    • Are there any prerequisites or special considerations for installing a security update (e.g., needing to restart the software, ensuring sufficient free space)?

Make It Simple and Clear

Avoid jargon. Use straightforward language and, if helpful, screenshots or short video guides if you're linking to online instructions. The easier you make it, the more likely users are to keep their software patched and secure.

For an app, this might mean explaining how to check for updates in the app store or within the app's settings. For a game engine, it means guiding developers on how to update the engine in their projects.

Key Takeaway

Provide unambiguous instructions on how users can install security-relevant updates for your software. This is a core requirement of Annex II, point 8c, ensuring users can easily apply critical patches.