Full Report
The FCC commissioner said letters of inquiry and at least one subpoena have been sent to Chinese-owned companies. The post FCC’s Carr alleges Chinese companies are making ‘end run’ around Chinese telecom bans, announces investigation appeared first on CyberScoop.
Analysis Summary
# Regulation/Compliance: FCC Investigation into Chinese Telecom Equipment Evasion
## Overview
This summary details the Federal Communications Commission (FCC) launching a sweeping investigation, spearheaded by Commissioner Carr and the new Council on National Security, targeting Chinese-owned telecommunications companies. The investigation aims to ensure compliance with existing bans under the Secure and Trusted Communications Networks Act, specifically focusing on allegations that these companies are attempting to bypass prohibitions by continuing business in the U.S. on a private or "unregulated" basis.
## Key Details
- Issuing Authority: Federal Communications Commission (FCC), specifically the Council on National Security.
- Effective Date: Investigation announced recently (article date context suggests March 2025). The underlying law (**Secure and Trusted Communications Networks Act**) was passed in 2019.
- Jurisdiction: United States telecommunications infrastructure and companies operating within U.S. jurisdiction.
- Status: Investigation in progress. (Letters of inquiry and at least one subpoena have been issued).
## Requirements
### Mandatory Requirements
1. **Adherence to Covered List Prohibitions:** U.S. telecom entities must not use federal subsidies to purchase equipment or services from companies on the FCC's Covered List (which includes Huawei, ZTE, Hytera Communications, Hikvision, Chinese Telecom, China Mobile, China Unicom, Dahua Technology Company, and Pacific Networks Corp).
2. **Full Cooperation in Investigation:** Companies identified or targeted must respond fully to FCC **letters of inquiry** and **subpoenas** regarding their business practices.
3. **Elimination of Risk:** Telecom providers are mandated by the underlying 2019 Act to eliminate Chinese telecommunications equipment posing an unacceptable risk to U.S. national security from their networks (often referenced via the Rip and Replace program incentives).
### Recommended Practices
1. **Proactive Loophole Review:** Organizations should review private or "unregulated" contracts and operations to ensure they do not inadvertently serve as a mechanism for banned vendors to skirt FCC prohibitions.
2. **Interagency Coordination:** Cooperate with federal agencies collaborating on this investigation to identify and mitigate any ongoing activities by high-risk vendors.
## Affected Organizations
- Industries: Telecommunications carriers, especially smaller telecoms that received funding under the rip-and-replace program, and any entities using or contracting with listed Chinese technology providers.
- Organization Size: Focus on smaller telecoms benefiting from subsidy programs, but the investigation impacts any entity using the barred equipment/services.
- Geographic Scope: United States.
## Compliance Timeline
- **2019 (Prior):** Secure and Trusted Communications Networks Act passed, charging the FCC with developing the Covered List and incentivizing rip-and-replace.
- **Ongoing:** FCC is actively investigating potential violations and evasion tactics.
- **Immediate/Ongoing:** Companies receiving inquiries/subpoenas must adhere to established deadlines for response.
- **Indefinite Final deadline:** Full compliance with the elimination of high-risk equipment is required, supported by past funding mandates.
## Implementation Guidance
### Assessment Phase
- **Vendor Mapping:** Conduct a comprehensive audit of all telecommunications infrastructure—including private and seemingly "unregulated" lines—to identify equipment or service providers linked to the FCC's Covered List.
- **Contract Review:** Scrutinize vendor contracts for clauses or structures that might constitute an "end run" around established FCC prohibitions.
### Implementation Phase
- **Remediation of Evasion Tactics:** Immediately cease any business practices that appear designed to circumvent existing security mandates concerning listed Chinese entities.
- **Data Submission:** Prepare documentation and data required to respond accurately and swiftly to FCC information requests or subpoenas.
### Validation Phase
- Document the proactive measures taken to close any identified loopholes and confirm that no federal funds were improperly used for services from covered entities (even indirectly).
## Technical Requirements
The article focuses more on regulatory and business practices evasion rather than specific technical controls, but the implication is:
1. **Removal of Barred Equipment:** Ensuring no equipment/services from the 12 named companies remain active in telecom networks, especially those benefiting from federal programs.
2. **Supply Chain Security:** Maintaining diligence against backdoors or data sharing risks cited as the original motivation for banning these vendors.
## Penalties & Enforcement
- Fines: Not explicitly stated in this snippet, but non-compliance with FCC prohibitions and failing to respond to formal inquiries (subpoenas) typically carry significant monetary fines.
- Other Consequences: Potential revocation of licenses, mandatory termination of operations related to prohibited equipment/services, and reputational damage.
- Enforcement: The FCC (via the Council on National Security) is utilizing formal legal tools, including **letters of inquiry and subpoenas**, and collaborating with other federal agencies to identify and close loopholes.
## Related Standards
- **Secure and Trusted Communications Networks Act (2019):** The foundational U.S. legislation dictating the ban and the FCC’s authority to identify high-risk vendors.
- **(Implied) Supply Chain Risk Management Standards:** Though not explicitly named, the actions align with broader U.S. governmental goals to secure critical infrastructure against foreign adversary influence.
## Resources
- Official Documentation: FCC Covered List page (URL provided in article context: `fcc.gov/supplychain/coveredlist`) and Commissioner Carr's official statement (a specific PDF link was cited).
- Guidance Documents: Documents related to the 2019 Act and the FCC's "Rip and Replace" program.
- Tools: Internal enterprise asset management tools for tracing vendor origins.
## Practical Recommendations
1. **Immediate Inventory Cross-Check:** Compare current network supplier lists against the FCC's Covered List immediately.
2. **Legal Review of Private Operations:** Engage legal counsel to review contracts with Chinese-linked entities to ensure compliance, even outside of explicit federal subsidy use pathways.
3. **Prepare for Inquiry:** Assume that any high-risk vendor interaction may be subject to an FCC inquiry, and ensure internal documentation regarding procurement and usage of telecom gear is robust and accessible.