Connected Cars NPRM First Step in Wider Connected Device Campaign: Lawyer

Johnson, a Wilkinson Barker cybersecurity lawyer and Center for Strategic and International Studies strategic technologies program senior fellow, said the notice of proposed rulemaking issued this week by Commerce’s Bureau of Industry and Security proposing restrictions on sales or imports of connected vehicles using hardware or software tied to Russia or China (see 2409220001) was the first salvo in what likely will be U.S. government moves against connected widgets from those nations -- not just particular Chinese or Russian manufacturers -- broadly.

"It will not stay within connected vehicles," Johnson said. "This is just the first step." Russia, China, Iran and North Korea are increasingly in a cyber alliance, with Russia, China and Iran especially active in the information space, such as hacking presidential campaigns and producing deep fake information, Johnson said.

He said that regardless of the results of the fall elections, the U.S. isn't likely to deviate notably from the cybersecurity approaches that date back more than a dozen years. He said while tones and tactics have varied from administration to administration, the trajectory -- a greater focus on restricting Chinese and Russian hardware- and software-based companies and an understanding that cybersecurity demands a dynamic, flexible approach -- remains constant. He said the fact every major piece of cyber legislation -- from the statute that established the Cybersecurity and Infrastructure Security Agency and the Secure and Trusted Communications Networks Act to the Secure Equipment Act -- has passed easily points to the U.S. approach having strong momentum.

SCTE is the Society of Cable Telecommunications Engineers.