Summary
Some U.S. firms, including some Department of Defense (DOD) contractors, receive foreign investment or have other ties to foreign entities, including foreign firms and foreign governments. Some DOD contractors' foreign connections could include connections such as ownership, investment, supplier or producer relationships, or production overseas. These ties may pose a risk to U.S. national security, especially when firms performing work of a sensitive or classified nature have relationships with adversarial countries.
DOD's Defense Counterintelligence and Security Agency (DCSA) is responsible for mitigating potential risks that may arise from foreign investment or foreign ties to DOD contractors. Foreign Ownership, Control, or Influence (FOCI) is a term that DOD uses to describe a condition in which a U.S. entity's foreign connections are believed to pose a risk of compromise of or unauthorized access to classified U.S. national security information.
In the last 10 years, Congress and DOD have taken several approaches to change laws and regulations to mitigate concerns about possible foreign malign influence on DOD contractors. Congress is considering changing statutory definitions to further address such concerns by broadening the scope of contract types subject to surveillance and mitigation. It may also consider tasking DOD to expand or centralize some of its pre-existing foreign influence mitigation programs. Congress might also consider reducing foreign influence mitigation efforts in the interest of allowing more entrants into the DOD contract market.
Introduction
This report provides background information and issues for Congress concerning the potential risk of foreign, particularly adversarial government, influence on Department of Defense (DOD) contractors.1 This report also provides an overview of legislative activity over the last ten years on this topic, as well as selected current DOD efforts to mitigate unwanted foreign influence of contractors.
Some oversight issues for Congress regarding foreign influence and DOD contracting include whether or not to amend statutory requirements banning or limiting certain companies with ties to adversarial governments from being awarded certain categories of DOD contracts. Congress may consider whether or not to require DOD to take action to further mitigate the potential risk of foreign influence in contracting. Congress may also consider taking no action or scaling back its current foreign influence mitigation efforts.
Foreign direct investment in the United States–that is, the ownership or control, direct or indirect, by a foreign entity of U.S.-based firms–has generally increased over the past ten years.2 Some U.S. firms, including some Department of Defense (DOD) contractors, receive foreign investment or have other ties to foreign entities, including foreign firms and foreign governments. Some DOD contractors' foreign connections could include ties such as ownership, investment, supplier or producer relationships, or production overseas. These ties may pose a risk to U.S. national security, especially when those performing work of a sensitive or classified nature have potential ties (such as foreign ownership and control) to adversarial countries.
DOD's Defense Counterintelligence and Security Agency (DCSA) is responsible for mitigating potential risks that may arise from foreign investment and foreign ties to DOD contractors. According to DCSA, Foreign Ownership, Control, or Influence (FOCI) occurs "whenever a foreign interest has the power, direct or indirect, whether or not exercised, and whether or not exercisable, to direct or decide matters affecting the management or operations of that company in a manner which may result in unauthorized access to classified information or may adversely affect the performance of classified contracts."3
DOD contracting-related statutes are covered in Titles 10 and 41 of the U.S. Code. Title 41 addresses federal procurement in general; its requirements apply to DOD unless otherwise specified in Title 10. Title 10 addresses DOD procurement specifically. The procurement provisions in Titles 41 and 10 are implemented by the Federal Acquisition Regulation (FAR) and the DOD-specific FAR supplement, the Defense Federal Acquisition Regulation Supplement (DFARS).4
Over the last 10 years, Congress and DOD have taken several approaches to change laws and regulations to further mitigate FOCI concerns with DOD contractors. One method Congress and DOD have used to mitigate FOCI risks is to require in statute that only a U.S.-owned company may provide certain types of goods or services and that DOD may not purchase such goods from companies with ties to certain countries. The way that DOD and Congress have defined such restrictions and categories has varied over time. Legislation over the last 10 years has added new types of goods or services to these lists and some observers have proposed that this list be further expanded.
Various sections of Title 10 include prohibitions on DOD's procurement of certain categories of goods and services from companies that have ties to certain countries or organizations that could pose a risk to U.S. national security. Additionally, several sections in Title 10 include specific procedures that DOD must follow to reduce the risk of foreign influence. Many of these provisions stem from legislation enacted over the last ten years, particularly sections that specifically call out the government and military of the People's Republic of China (PRC or China). The following section provides an overview of selected laws and legislation aimed at mitigating the potential risk of foreign influence in DOD contracting.
Defense Federal Acquisition Regulation Supplement (DFARS)
Many of the Title 10 provisions that stem from legislative action are ultimately implemented by DOD in the Defense Federal Acquisition Regulation Supplement (DFARS). The DFARS, the DOD-specific supplement to the FAR, does not contain blanket restrictions on foreign entities' investment or other forms of involvement with DOD contractors. However, the DFARS does include restrictions on the acquisition of some items from certain companies. For example, one portion of the DFARS outlines a prohibition on some items from companies that have known ties to the PRC military.5
Selected Laws Related to Foreign Influence and DOD Contractors
The following sections present selected laws related to the potential risk of foreign influence in DOD contracting. Several provisions impose federal procurement restrictions on selected categories of technologies produced by certain companies and produced by other companies owned or controlled by, or otherwise connected to, the governments of adversarial countries. Additionally, some provisions address certain goods and services produced by certain PRC government-affiliated entities, such as the Huawei Technologies Company (Huawei).6
Many of these provisions were enacted at the same time that the U.S. government began to characterize its sometimes-tense relations with countries such as the PRC and the Russian Federation (Russia) as a great power competition (GPC).7 During this time, both Congress and the executive branch identified foreign influence, supply chain risks, and risks involving DOD contractors as part of GPC.
Fiscal Year 2018 National Defense Authorization Act (NDAA), P.L. 115-91
Section 1656 of the FY2018 National Defense Authorization Act (NDAA) required that the Secretary of Defense submit to the congressional defense committees an assessment of the extent to which DOD relied on certain categories of telecommunications equipment that were produced or provided by certain foreign-affiliated entities (including Huawei) to fulfill nuclear deterrence and ballistic missile defense missions.8 This provision allowed DOD to submit waivers for this requirement on a case-by-case basis, but required that these waivers be submitted by the Secretary of Defense and not be delegated to lower levels of authority, which suggests a high level of importance, because many categories of acquisition requirements may often be waived at lower component levels.
John S. McCain National Defense Authorization Act for Fiscal Year 2019, P.L. 115-232
Section 889 of the FY2019 NDAA imposed federal procurement restrictions on certain telecommunications and video surveillance goods and services from several companies affiliated with the PRC, including the Huawei Technologies Company and the ZTE Corporation.9 This prohibition applies to DOD, and includes a prohibition on loans and grants, in addition to contracting. The Federal Acquisition Regulatory Council issued several interim rules implementing this statute beginning in August 2019, including detailed requirements for DOD, as well as other covered agencies.10 This restriction was implemented in the DFARS in Section 252.204-7018 and includes waiver requirements and procedures should a DOD entity need to work with a contractor using covered equipment.11
Defense industry groups protested the timeline, intensity, and complexity of this requirement in 2020, the originally planned time of its implementation. For example, a representative of the Professional Services Council, an advocacy group for federal service contractors, said that "the potential impact under the statute could affect nearly every contractor and subcontractor across the entire federal government," and that there were "consequences that reach beyond prime contractors."12 Other commentators raised concerns about the lack of clarity concerning applicability of the new requirements for subcontractors.13
In August 2020, the Director of National Intelligence (DNI) granted DOD a temporary waiver to address some of these concerns and "to provide time to review the full details of the rule implementation using additional information from DOD," according to a statement from DOD.14
William M. (Mac) Thornberry National Defense Authorization Act for Fiscal Year 2021, P.L. 116-283
Section 819 of the FY2021 NDAA amended a note in Title 10 of the U.S. Code requiring DOD to "require reports and conduct examinations" of covered contractors "to assess compliance" related to FOCI mitigation efforts.15 The provision also required that DOD develop "procedures for appropriately responding to changes in covered contractor of subcontractor beneficial ownership status based on changes in disclosures of their beneficial ownership and whether they are under FOCI…"16 This requirement was part of a broader initiative that began in the FY2020 NDAA to modernize acquisition processes and ensure integrity of the defense industrial base.17
According to DOD, its Acquisition Technology and Information Team was tasked in 2021 with drafting the proposed DFARS rule partially implementing this provision; its report due date was extended to June 2024.18
Section 1260H of the FY2021 NDAA required that DOD "identify each entity the Secretary [of Defense] determines based on the most recent information available, is operating directly or indirectly in the United States or any of its territories and possessions, that is a Chinese military company."19 This provision included the traditional definition of PRC military companies, and also what it calls "military-civil fusion contributors," which includes a more expansive definition of ties to the PRC military and government beyond companies with explicit ties to the Chinese military.20 Beyond ties to the People's Liberation Army or the Central Military Commission of the Communist Party of China, a "military-civil fusion contributor" may have ties to organizations such as the PRC Ministry of Industry and Information Technology or "entities that advertise on national, provincial, and nongovernmental military equipment procurement platforms in the People's Republic of China."21 DOD is to submit this information annually to the Armed Services Committees and publish an unclassified version of its list in the Federal Register until 2030.22
The most recent version of the notice of designation of Chinese Military Companies was released in the Federal Register on April 2, 2024, in accordance with this legislation's statutory reporting requirements.23
Fiscal Year 2022 NDAA, P.L. 117-81
Section 855 of the FY2022 NDAA tasked DOD with requiring that certain contractors and subcontractors disclose if they have employees "who will perform work in the People's Republic of China on a covered contract."24 Per the provision, contract funding is be withheld until this information is provided to DOD, potentially making enforcement of this amendment easier by incentivizing contractors to provide this information expeditiously.25 Additionally, DOD is to provide semi-annual briefings to congressional defense committees summarizing the information it finds from such disclosures.26 While not an explicit restriction of DOD contractors that work in the PRC, this additional information may support security and contracting officers when conducting due diligence.
This Federal Acquisition Regulatory Council implemented this provision when it amended a portion of the DFARS that addressed DOD contract solicitation provisions, which was last updated in March 2024.27
James M. Inhofe National Defense Authorization Act for Fiscal Year 2023, P.L. 117-263
Section 5949 of the FY2023 NDAA imposed restrictions on the procurement of goods or services that include components from semiconductor companies with links to certain countries.28 It also imposed a restriction on the procurement of goods and services for "a critical system" that "uses" components from these covered semiconductor companies.29 The final version of the legislation changed the word "use[s]" to "include[s]," which some analysts assert represented a less strict, "scaled back" version of the originally proposed legislation.30 This change came after reported pushback from multiple industry and trade groups, including several defense industry groups.31
Similar to earlier NDAA provisions, this legislation also allows an executive agency head to waive, for two years, the prohibition if "no compliant product or service is available to be procured as, and when, needed at United States market prices or a price that is not considered prohibitively expensive," and if "such waiver could not reasonably be expected to compromise the critical national security interests of the United States."32
In the Joint Explanatory Statement, the defense committees noted that
the intent of Congress in advancing this proposal is that, in serving federal supply chains, Federal contract recipients and their suppliers (including domestic and foreign subsidiaries, affiliates, distributors, and intermediaries) should not utilize companies connected to foreign countries of concern that threaten national security, such as Semiconductor Manufacturing International Corporation, Yangtze Memory Technologies Corp, and ChangXin Memory Technologies, or any other company identified under this section (including any affiliate, subsidiary, successor, distributor, or intermediary thereof). Furthermore, we believe that for the purposes of waivers that may be issued under this section, critical national security interests of the United States may include protecting the Nation's economic security and its technological competitiveness relative to strategic competitors…the intent of this provision is to include both contractors and suppliers, to the extent possible under the Federal Acquisition Regulation.33
This provision received mixed reactions from outside groups. Some pro-commerce advocacy groups praised the provision, saying that it would "[protect] against Chinese cyber threats and any dependence on China for our critical infrastructure and defense capabilities."34 Other commentators have noted that the prohibitions may be onerous for potential DOD contractors, saying that contractors may need "dedicated supply chain security personnel who are going to be responsible for all of the regulations that are coming out in this area."35
Current Efforts to Mitigate Foreign Influence of DOD Contractors
Beyond the statutory and regulatory measures detailed above, DOD maintains other programs that aim to mitigate the risks, extent of, and impact of foreign influence in DOD contracting. Some of these programs, such as the National Industrial Security Program (NISP), protect certain categories of contracts, such as classified contracts, while other programs aim to protect certain components of DOD, such as science and technology programs.
In addition to DOD-specific requirements and programs, DOD contractors must also follow U.S. export control regulations and decisions, which apply to all U.S. firms. The U.S. Department of Commerce maintains a control list of dual use technologies, which have both civilian and military uses and are subject to export controls. The Commerce Department also maintains lists of entities that pose proliferation or foreign policy concerns and require additional licensing requirements or restrictions.36
National Industrial Security Program (NISP)
The NISP applies to contractors that have access to classified information and/or perform classified contracts and has specific restrictions for contractors regarding FOCI. The NISP was established in 1993 by Executive Order (E.O.) 12829, "The National Industrial Security Program," with the intent to "safeguard Federal Government classified information that is released to contractors, licensees, and grantees."37 The E.O. states that the NISP "shall serve as a single, integrated, cohesive industrial security program to protect classified information and to preserve our Nation's economic and technological interests."38
NISP regulations outline specific FOCI mitigation procedures for contractors that possess security clearances, including the NISP Operating Manual (NISPOM), located in the Code of Federal Regulations (C.F.R.). The NISPOM requires that cleared contractors report to DOD any FOCI, including foreign classified contracts and "loss, compromise, or suspected compromise of classified information."39
The NISPOM notes that the requirements for a "classified contract" (including FOCI-related procedures) are also "applicable to all phases of precontract, license or grant activity, including solicitations (bids, quotations, and proposals), precontract negotiations, post-contract activity, or other government contracting activity (GCA) programs or projects which require access to classified information by a contractor."40 Additionally, DCSA has specific requirements for contractor and subcontractor facility clearances to ensure the protection of classified information.41
According to the NISPOM, when the cognizant security agency has "determined that an entity is under FOCI, the primary consideration will be the protection of classified information" and the government will "take whatever action is necessary to protect classified information."42
Technology Protection Programs
Data-sharing and intellectual property-related requirements and provisions for DOD contracts are often contract-specific. A 2021 update to Department of Defense Instruction (DODI) 5000.83 Technology and Program Protection to Maintain Technological Advantage establishes policy for science and technology (S&T) managers to protect DOD innovation.43 The DODI states DOD contractors and contractor facilities "are at risk of attacks by state and non-state threat actors."44 The DODI also tasks S&T managers and "lead systems engineers" with developing "risk informed protection planning and management of their technology… to mitigate adversary impacts."45
Agency-Specific DOD Foreign Influence Mitigation Programs
Some DOD offices or agencies maintain their own programs or efforts to mitigate the potential impact of foreign influence for contractors or other nongovernmental partners. For example, the Defense Advanced Research Projects Agency (DARPA) has its own Countering Foreign Influence Program (CFIP), which addresses academic partners for DARPA-funded research.46 Congress might consider whether to require DOD to assess the CFIP and whether it could be integrated into other programs or organizations.
Similarly, in 2023, DOD announced efforts to protect DOD-funded research at educational institutes, including issuing a "Policy for Risk-Based Security Reviews of Fundamental Research."47 Congress may also consider studying or requiring a study of the potential efficacy of a similar initiative aimed at uncleared contractors that would specifically focus on foreign influence using a risk-based framework.
Mitigating Foreign Influence for Small Businesses
Understanding the potential risk of foreign influence on small businesses is a particular concern for DOD, as smaller companies may lack the resources for protection from foreign influence efforts.48 In 2023, DOD released a Small Business Strategy that aimed to bring small businesses into the defense industrial base, including nontraditional vendors.49 According to DOD officials, mitigating the potential negative effects of foreign influence is "arguably [one of] the most pressing issues faced by small businesses," as adversaries may find small firms to be an easier target for espionage, cyber threats, or intellectual property (IP) theft.50
Small businesses that provide unique or innovative technologies are at particular risk of foreign influence efforts, as are companies that struggle to obtain financing. In 2020, DOD established the Trusted Capital Digital Marketplace program, which connects vetted trusted capital providers investors with qualifying domestic companies critical to the DIB.51 This program was intended to allow DOD contractors to have access to funding that is safe from FOCI risk and "limit foreign access to critical technology."52 Then-Undersecretary of Defense for Acquisition and Sustainment Ellen Lord cited "adversarial capital," or investment funding from countries of concern, "whether that be in terms of intellectual property or whether that be technology development or manufacturing," as a driving factor for creating the program.53
Congress may consider taking no action, taking legislative action, or directing DOD to take action to further mitigate the potential risk of foreign influence with its contractors. Actions available to Congress include the following:
| 1. |
CRS In Focus IF10600, Defense Primer: Department of Defense Contractors, by Alexandra G. Neenan. |
| 2. |
For more information about foreign direct investment in the broader U.S. economy, see CRS Report RS21857, Foreign Direct Investment in the United States: An Economic Analysis, by Andres B. Schwarzenberg. |
| 3. |
Defense Counterintelligence and Security Agency, "Foreign Ownership, Control, or Influence," https://www.dcsa.mil/Industrial-Security/Entity-Vetting-Facility-Clearances-FOCI/Foreign-Ownership-Control-or-Influence/. For information about intelligence community efforts to mitigate the effects of foreign malign influence, see CRS In Focus IF12470, The Intelligence Community's Foreign Malign Influence Center (FMIC), by Michael E. DeVine. |
| 4. |
Additional information about the FAR can be found in CRS Report R42826, The Federal Acquisition Regulation (FAR): Answers to Frequently Asked Questions, coordinated by Erika K. Lunder. For additional information, congressional clients may contact Dominick Fiorentino. |
| 5. |
Defense Federal Acquisition Regulation Supplement, §252.225-7007. |
| 6. |
For more information on U.S. restrictions on Huawei technologies specifically, see CRS Report R47012, U.S. Restrictions on Huawei Technologies: National Security, Foreign Policy, and Economic Interests, by Jill C. Gallagher. |
| 7. |
For more information about Great Power Competition, see CRS Report R43838, Great Power Competition: Implications for Defense—Issues for Congress, by Ronald O'Rourke. |
| 8. |
P.L. 115-91, §1656. Defense committees, as defined in 10 U.S.C., §101(a)(16), are the Senate Armed Services Committee, House Armed Services Committee, Senate Appropriations Committee, and the House Appropriations Committee. |
| 9. |
P.L. 115-232, §889. |
| 10. |
85 Federal Register 42665, at https://www.federalregister.gov/documents/2020/07/14/2020-15293/federal-acquisition-regulation-prohibition-on-contracting-with-entities-using-certain. |
| 11. |
Defense Federal Acquisition Regulation Supplement, §252.204-7018. |
| 12. |
Joe Gould, "U.S. Government's Huawei Ban Moving Too Fast, Contractors Say," Defense News, July 9, 2020. |
| 13. |
Scott S. Sheffler, "Section 889, The "Huawei Ban" in Federal Contracts: General Scope and Considerations," (2020), at https://www.feldesman.com/section-889-the-huawei-ban-in-federal-contracts-general-scope-and-considerations/. |
| 14. |
Department of Defense, "Ellen M. Lord, Undersecretary of Defense for Acquisition and Sustainment, Briefs Media at the Pentagon," press release, August 2020, at https://www.defense.gov/News/Transcripts/Transcript/Article/2319990/ellen-m-lord-undersecretary-of-defense-for-acquisition-and-sustainment-briefs-m/. |
| 15. |
P.L. 116-283, §819. The NDAA references a note in 10 U.S.C. §2509, but the portion of Title 10 in question has since been renumbered and can be located in 10 U.S.C. §4819. |
| 16. |
P.L. 116-283, §819. |
| 17. |
P.L. 116-92, §845. |
| 18. |
DOD, "Open DFARS Cases," April 2024, at https://www.acq.osd.mil/dpap/dars/opencases/dfarscasenum/dfars.pdf#page=11. |
| 19. | |
| 20. |
Ibid. |
| 21. |
Ibid. |
| 22. |
Ibid. |
| 23. |
89 FR 22698, "Notice of Availability of Designation of Chinese Military Companies," April 2024, https://www.federalregister.gov/documents/2024/04/02/2024-06895/notice-of-availability-of-designation-of-chinese-military-companies. |
| 24. |
P.L. 117-81, §855. |
| 25. |
Ibid. |
| 26. |
Ibid. |
| 27. |
DFARS, §252.225-7058. |
| 28. |
P.L. 117-263, §5949. For more information on Chinese influence in the semiconductor industry, see CRS Report R46767, China's New Semiconductor Policies: Issues for Congress, by Karen M. Sutter. |
| 29. |
Ibid. |
| 30. |
Alexandra Alper, "U.S. lawmakers ease planned curbs on Chinese chips amid corporate pushback," Reuters, December 2022, https://www.reuters.com/world/us/us-lawmakers-ease-proposed-curbs-chinese-chips-amid-corporate-pushback-2022-12-06/. |
| 31. |
Ibid. |
| 32. |
Ibid. |
| 33. |
Joint Explanatory Statement to Accompany the James M. Inhofe National Defense Authorization Act for Fiscal Year 2023, pp. 703-704, at https://www.armed-services.senate.gov/imo/media/doc/fy23_ndaa_joint_explanatory_statement.pdf. |
| 34. |
American Free Enterprise Chamber of Commerce, letter to Congress, November 2022, at https://www.politico.com/f/?id=00000184-a64c-d1d1-ad8d-af7d115d0000. |
| 35. |
Justin Doubleday, "New rule sets stage for banning risky technologies from government supply chains," Federal News Network, October 2023, at https://federalnewsnetwork.com/acquisition-policy/2023/10/new-rule-sets-stage-for-banning-risky-technologies-from-government-supply-chains/. |
| 36. |
U.S. Department of Commerce, "Commerce Control List," at https://www.bis.doc.gov/index.php/regulations/commerce-control-list-ccl. |
| 37. |
Executive Order 12829, "National Industrial Security Program," January 1993, WCPD-1993-01-11-Pg17.pdf (govinfo.gov). |
| 38. |
Ibid. |
| 39. |
32 C.F.R. Part 117, "National Industrial Security Program Operating Manual (NISPOM), at https://www.ecfr.gov/current/title-32/subtitle-A/chapter-I/subchapter-D/part-117. |
| 40. |
Ibid. |
| 41. |
Defense Counterintelligence and Security Agency, "Facility Clearances," at https://www.dcsa.mil/Industrial-Security/Entity-Vetting-Facility-Clearances-FOCI/Facility-Clearances/. |
| 42. |
Ibid. |
| 43. |
U.S. Department of Defense, "Instruction 5000.83: Technology and Program Protection to Maintain Technological Advantage," May 2021, at https://www.esd.whs.mil/Portals/54/Documents/DD/issuances/dodi/500083p.pdf. |
| 44. |
Ibid., p. 11. |
| 45. |
Ibid. |
| 46. |
Defense Advanced Research Projects Agency, "Countering Foreign Influence Program (CFIP) Frequently Asked Questions (FAQ)," May 2022, at https://www.darpa.mil/attachments/CFIPFAQ.pdf. |
| 47. |
Department of Defense, "Department of Defense Strengthening Efforts to Counter Unwanted Foreign Influence on DOD-Funded Research at Institutions of Higher Education," June 2023, at https://www.defense.gov/News/Releases/Release/Article/3445601/department-of-defense-strengthening-efforts-to-counter-unwanted-foreign-influen/. |
| 48. |
For more information on DOD and its relationship with small business contractors, see CRS Report R45576, An Overview of Small Business Contracting, by R. Corinne Blackford. |
| 49. |
U.S. Department of Defense, "Small Business Strategy," January 2023, at https://media.defense.gov/2023/Jan/26/2003150429/-1/-1/0/SMALL-BUSINESS-STRATEGY.PDF. |
| 50. |
U.S. Department of Defense, "DOD Increases Efforts to Bring Small Businesses Into Defense Industrial Base ," press release, March 2023, at https://www.defense.gov/News/News-Stories/Article/Article/3339784/dod-increases-efforts-to-bring-small-businesses-into-defense-industrial-base/. |
| 51. |
U.S. Department of Defense, "Department of Defense Announces Establishment of the Trusted Capital Digital Marketplace," January 2021, at https://www.defense.gov/News/Releases/Release/Article/2470485/department-of-defense-announces-establishment-of-the-trusted-capital-digital-ma/. |
| 52. |
Ibid. |
| 53. |
Hudson Institute, "Transcript: Competing with Great Powers at the "Speed of Relevance": A Conversation with Ellen Lord," December 2020, at https://www.hudson.org/national-security-defense/transcript-competing-with-great-powers-at-the-speed-of-relevance-a-conversation-with-ellen-lord. |
| 54. |
32 C.F.R. Part 117, "National Industrial Security Program Operating Manual (NISPOM), at https://www.ecfr.gov/current/title-32/subtitle-A/chapter-I/subchapter-D/part-117. |
| 55. |
Ibid. |
| 56. |
U.S. Government Accountability Office, Agencies Need to Enhance Policies to Address Foreign Influence, 21-130, December 2020, at https://www.gao.gov/assets/gao-21-130.pdf, p. 7. |
| 57. |
Ibid. |
| 58. |
Department of Defense, "Instruction 5000.83: Technology and Program Protection to Maintain Technological Advantage," May 2021, at https://www.esd.whs.mil/Portals/54/Documents/DD/issuances/dodi/500083p.pdf, p. 1. |