Long overdue. Government IT purchases must now pass law enforcement review to make sure the Chinese (and other countries) aren’t embedding backdoor access into the IT infrastructure equipment the US buys. Things like switches, routers, even the chips on cell phones are increasingly made in countries susceptible to foreign and not necessarily friendly manipulation and subterfuge.
law requires the agencies to make a formal assessment of “cyber-espionage or sabotage” risk in consultation with law enforcement authorities when considering buying information technology systems.
Don’t forget that in October 2012 the US government decided Chinese cellphone manufacturers Huwaei and ZTE couldn’t be trusted.
The investigation concludes that the risks associated with Huawei’s and ZTE’s provision of equipment to U.S. critical infrastructure could undermine core U.S. national – security interests.