On Friday, November 22, 2019, the Federal Acquisition Regulatory (FAR) Council published a long-awaited final rule expanding the requirement to report counterfeit electronic parts in their supply chains. This requirement, previously applicable to defense contractors, will now apply to all U.S. federal contractors and require them to report to the Government-Industry Data Exchange Program (GIDEP) any counterfeit or potentially counterfeit parts used in “complex items with critical applications,” as well as nonconforming parts that do not meet contractual specifications. GIDEP is a widely available federal database, and the FAR Council believes that this mandatory reporting to the GIDEP will allow contractors to share knowledge of counterfeits and critical nonconformance. This, in turn, should reduce the risk of counterfeits from penetrating procurement supply chains.
Cybersecurity, Privacy, & AI
Trending Now
Anthropic’s Reported $30B Funding Talks Spotlight AI’s Growing Role in Cybersecurity, Defense • DC3 Seeks New Contractors for DCISE Voluntary Cyber Information-Sharing Program • Pentagon Cyber Official Calls Advanced AI ‘Revolutionary Warfare’ • NIST Aims for Summer Release of AI Cyber Guidelines • President Trump’s Cyber Strategy: Cross-Sector Implications for U.S. and UK Businesses
Fake Parts Remain in Focus: FAR Council Expands Counterfeit Reporting Rules
Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.