The FCC has banned new foreign-made consumer routers from receiving equipment authorization, though existing devices remain legal to use and retailers may continue selling current inventory.

Key Points

• The FCC's March 23 ruling targets all foreign-produced routers, regardless of the manufacturer's country of origin, to address national security concerns.
• Previously authorized routers are grandfathered in, meaning current models on store shelves and in homes remain legal to sell, purchase, and operate.
• Manufacturers may continue providing security patches and firmware updates for existing devices until at least March 1, 2027.
• The policy requires companies to establish or expand domestic manufacturing in the United States to qualify for conditional authorization exemptions.
• Recent cybersecurity incidents, including the Volt Typhoon and Salt Typhoon campaigns, involved state-sponsored actors exploiting vulnerabilities in aging, unpatched networking hardware.

Why it Matters

This policy shift signals a long-term transition toward domestic hardware production that could eventually reduce consumer choice and increase prices for home networking equipment. While the ban aims to mitigate state-sponsored cyber threats, it currently functions more as an industrial policy than a technical security standard, leaving the most vulnerable, legacy devices in use while restricting newer, more secure models.