FCC Updates Covered List to Include Foreign-Made Consumer Routers

https://www.fcc.gov/document/fcc-updates-covered-list-include-foreign-made-consumer-routers

51•moonka•1h ago

https://docs.fcc.gov/public/attachments/DOC-420034A1.pdf

https://www.fcc.gov/document/fcc-adds-routers-produced-forei...

https://docs.fcc.gov/public/attachments/DA-26-278A1.pdf

Comments

buzer•28m ago

> all consumer-grade routers produced in foreign countries

Are there even consumer-grade routers that are produced in the USA...?

kbumsik•21m ago

Right? Even enterprise routers, e.g. Cisco, are not produced in USA.

Mistletoe•16m ago

Time for the made in USA tin can and a string.

daemonologist•10m ago

Hey, let's not undersell America's high-tech manufacturing capability. We could easily produce morse code keys and copper wire, for a price of course.

amluto•16m ago

But we can still buy old models:

> As outlined below, today’s action does not impact a consumer’s continued use of routers they previously acquired. Nor does it prevent retailers from continuing to sell, import, or market router models approved previously through the FCC’s equipment authorization process. By operation of the FCC’s Covered List rules, the restrictions imposed today apply to new device models.

I’m sure plenty of US factories are capable of importing boxes that look like routers but are actually just switches (because the router firmware is missing) and re-flashing them here…

weightedreply•26m ago

Will this impact the Mono Gateway[0]?

[0] https://mono.si/

WarOnPrivacy•18m ago

    The FCC maintains a list of equipment and services (Covered List) 
    that have been determined to “pose an unacceptable risk to the
    national security

    Recently, malicious state and non-state sponsored cyber attackers
    have increasingly leveraged the vulnerabilities in small and home
    office routers produced abroad to carry out direct attacks against
    American civilians in their homes.

Vulnerabilities have nothing to do with country of manufacture. They have always been due to manufacturers' crap security practices. Security experts have been trying to call attention to this problem for 2 decades.

Manufacturers have never had to care about security because no Gov agency would ever mandate secure firmware. This includes the FCC which license their devices and the FTC who (until recently) had the direct mandate to protect consumers.

Our most recent step backward was to gut those agencies of any ability to provide consumer oversight. All they they can do now is craft protectionist policies that favor campaign donors.

The US has a bazillion devices with crap security because we set ourselves up for this.

orthogonal_cube•4m ago

That’s the ironic part.

Plenty of consumer-grade devices have had very lax security settings or backdoors baked in for purposes of “troubleshooting” and recovery assistance. It’s never been limited to foreign-made devices.

Security has never been part of the review process. The only time any agency has really cared is when encryption is involved, and that’s just been the FBI wanting it to be neutered so they can have their own backdoors.

Someone1234•15m ago

Considering this is after Loper Bright Enterprises v. Raimondo (2024), it will be interesting to see if this holds up to judicial scrutiny.

The FCC's power just got substantially nerfed, and "we've decided to slow lane all foreign-made routers" feels like that may have been beaten on the old, higher, standard. Let alone the new one that gives the FCC almost no power.

WarOnPrivacy•13m ago

If we wanted secure products, we wouldn't ban devices. We'd mandate they open their firmware to audits.

dmitrygr•10m ago

problem is: how do you prove the firmware in the flash chip matches source? And I do not mean me, with a disassembler and a pi pico to read out the flash chip. I mean the 70-yaer-old corner shop owner that buys this router to provide free WiFi for customers?

WarOnPrivacy•6m ago

> how do you prove the firmware in the flash chip matches source?

Trusted, qualified independent experts: Ala Underwriters Laboratories.

jscheel•8m ago

And exactly how many consumer routers are not foreign made?

I reverse-engineered Claude Code and rebuilt its SDK in 4 languages

Dear Europe: Germany has shown the way forward

Pentagon Adopts New Limits for Journalists After Court Loss

RocksDB development finds a CPU bug

Classification: Accuracy, recall, precision, and related metrics

Personal and Business Tax Returns via MCP

Show HN: AI Morning Briefing – weather, stocks, news, and a quote emailed daily

XMMS Resuscitated: XMMS ported to gtk4 with gstreamer/pipewire

SettleTheVibe – Let strangers vote on who's right in your real-life disputes

Big Nuclear's Big Mistake – Linear No-Threshold - Kyle Hill [video]

Study: Workers who fall for 'corporate bullshit' may be worse at their jobs

Evercookie

Windows 3.1 tiled background .bmp archive

The Belonging Industrial Complex

Show HN: Remember psDooM, try ps HID Combat

Quantum‑Grade Entropy

SQL's TypeScript moment will help agents just as much as it'll help humans

In sports vision analysis cloud compute isn't best for speed, cost, connectivity

Show HN: Dgs-CLI – 63-command CLI for D-Link DGS-1100 switches via Selenium

4chan's hamster-filled reminder US cos needn't comply with UK speech regulations

Supreme Court declines to review press freedom case

Rasmus Andersson Launches Playbit macOS App

IRIX 3dfx Voodoo driver and glide2x IRIX port

Steps toward great agent experience every API provider can take today

Is Argon2 better than Bcrypt?

Ask HN: Karpathy auto research on a miata ecu?

Welcome to the AI agent arms race

GSA extends comments on AI clause after industry pushback

The Builder's Dilemma: Why the World Rewards Hype and How to Win with Real Value

A Claude plugin for the full software development lifecycle