USA: FCC issues new draft regulations to strengthen communication supply chain security and comprehensively close component vulnerabilities


On July 1, 2026, the U.S. Federal Communications Commission (FCC) released its July committee meeting agenda. Among them, Topic 5, "Strengthening Rules Governing Dangerous Gear" mentions that the FCC will issue the third edition Report and Order regarding the Covered List , further upgrading control over companies and products on the Covered List. The core of the new regulation is to comprehensively close "component vulnerabilities." The FCC explicitly prohibits authorizing any devices containing "hardware components with logical functions" (such as core chips) produced by "Covered List" entities to prevent security risks from penetrating communication networks. Any modifications or changes made by entities on the "Covered List" to their equipment must undergo the most rigorous full certification procedures, and the simplified Supplier Declaration of Conformity (SDoC) process is strictly prohibited. In addition, regulatory reach extends to e-commerce platforms, requiring them to clearly display the FCC ID when selling certified devices online. The FCC has also updated and tightened the definition of "critical infrastructure."

The final Report and Order will be officially released after discussion and approval at the FCC meeting on July 22. Click this link to view the original draft of Reports and Order.