Joyce Corell, assistant director for the supply chain directorate at the Officer of the Director of National Intelligence’s (ODNI) National Counterintelligence and Security Center, predicts that regulation or other means to manage IT supply chain security risk is inevitable, given increased emphasis on the topic across government. Speaking at an Information Security and Privacy Advisory Board meeting Friday, Corell said rumblings across the Federal space concerning supply chain risk will soon likely lead to even more formal steps. […]

Clauses in House and Senate versions of the National Defense Authorization Act (NDAA) that would limit or outright ban Federal government agencies from purchasing products from Chinese telecommunications equipment maker ZTE could have unintended downsides, according to Sean Farrell, a Republican staffer for the House Energy and Commerce Committee.






[…]

Several members of Congress in a June 20 letter urged Google to “reconsider” its business relationship with China-based communications equipment maker Huawei, saying that the partnership between the two companies “could pose a serious risk to U.S. national security and American consumers” because of Huawei’s ties to the Chinese Communist Party, which led U.S. intelligence agencies earlier this year to urge Americans not to use Huawei products and services.






[…]

The Senate this afternoon convened to discuss H.R. 5515, the National Defense Authorization Act for Fiscal Year 2019 (NDAA), which is headed for a vote later tonight and is expected to be approved.






[…]

Sens. Tom Cotton, R-Ark., and Chris Van Hollen, D-Md., said on Monday that an amendment they introduced last week to defense legislation that would ban government agencies from buying goods and services from China-based communications equipment makers ZTE and Huawei made the cut for inclusion into the National Defense Authorization Act (NDAA) for FY 2019.






[…]

It’s no secret that Chinese companies are major suppliers to U.S. technology companies that serve the Federal government, and a report issued last month says the Chinese government is leveraging that manufacturing capability to create significant security risks across the U.S. Federal enterprise.






[…]