FCC Expands Ban to Include All Foreign-Made Consumer Routers
The US Federal Communications Commission (FCC) has taken a significant step in its ongoing efforts to safeguard national security by updating its Covered List. The agency has now included all consumer-grade routers manufactured in foreign countries, with a particular focus on Chinese-made products. This decision stems from heightened security concerns and aims to address vulnerabilities in the US market.
Background and Market Context
According to a Reuters report, China is estimated to control at least 60% of the US market for home routers. These devices, which connect computers, phones, and smart devices to the internet, are ubiquitous in American households. The FCC's move does not impact existing models already in use but targets future imports and sales. This action follows a similar ban in December last year, when the agency prohibited the import of all new models of Chinese drones.
Official Announcement and Rationale
In its official announcement, the FCC stated that the update "followed a determination by a White House-convened Executive Branch interagency body with appropriate national security expertise that such routers pose unacceptable risks to the national security of the United States or the safety and security of United States persons." The agency highlighted that malicious actors have exploited security gaps in foreign-made routers to launch attacks on American households, disrupt networks, enable espionage, and facilitate intellectual property theft. Specific incidents, such as the Volt, Flax, and Salt Typhoon cyberattacks targeting vital US infrastructure, were cited as examples.
FCC Chairman's Statement
FCC Chairman Carr issued a statement welcoming the Executive Branch's national security determination. He said, "I am pleased that the FCC has now added foreign-produced routers, which were found to pose an unacceptable national security risk, to the FCC's Covered List. Following President Trump's leadership, the FCC will continue to do our part in making sure that US cyberspace, critical infrastructure, and supply chains are safe and secure."
Understanding the FCC's Covered List
The FCC's Covered List is a critical tool under the Secure and Trusted Communications Networks Act. It comprises communications equipment and services deemed to pose an unacceptable risk to US national security or the safety of US persons. The Commission cannot update this list independently; it must implement determinations made by national security agency experts. Equipment on the list is prohibited from receiving FCC equipment authorization, which is required for most electronic devices, including consumer-grade routers, before importation, marketing, or sale in the US. This effectively bans new devices from entering the market.
Implications and Compliance
The Cybersecurity and Infrastructure Security Agency (CISA) encourages organizations to use the Covered List for risk management analysis in their regulatory compliance efforts. This move is part of a broader US government crackdown on Chinese-made electronic gear, driven by persistent security concerns. By restricting foreign-made routers, the FCC aims to mitigate potential threats and enhance the resilience of US networks against cyberattacks.
This development underscores the increasing focus on cybersecurity in consumer electronics and the strategic measures being taken to protect critical infrastructure. As the global tech landscape evolves, such regulatory actions are likely to shape future market dynamics and security protocols.
