Congress·In Committee·11 months ago

Congress Moves to Require Pentagon to Buy Key IT Hardware Only From Original Makers or Approved Sellers

Also known as: SAFE Supply Chains Act

Legislative Progress

✓ Filed

Review

Senate

House

President

Impacts

Mixed Impacts(2)

Military Active

Neutral

Federal Employee

Neutral

Key Points

The bill would require the Defense Department to buy and use certain IT hardware (and related built-in software) only from the original maker or an approved, authorized seller.
Goal: reduce the risk of tampered or fake equipment getting into military systems by cutting out unknown middle sellers in the supply chain.
The Defense Secretary could waive the rule for valid research needs or to keep mission-critical work running, but must notify Congress and explain the safety steps taken.
The Defense Department would also have to publish guidance to help currently ineligible vendors become authorized sellers, so they can still compete for contracts.
The Defense Department would report to Congress every year for 6 years on how often waivers were used and what it’s doing to reduce them; the rule would start 1 year after it becomes law.

National SecurityTechnologyCybersecurityTrade

Milestones

2 milestones2 actions

Apr 9, 2025Senate

Read twice and referred to the Committee on Armed Services.

Apr 9, 2025

Introduced in Senate

What Happens Next

Projected impacts based on AI analysis

Soon after the bill becomes law

DoD starts preparing new buying rules that limit covered IT purchases to OEMs or authorized resellers

Defense IT contracts and purchase orders will start adding “approved source only” requirements, and vendors will be asked to prove authorization

Before the 1-year effective date

DoD publishes vendor technical assistance guidance on how to become an authorized reseller

Some resellers that are currently ineligible may get a clearer pathway (steps, documentation) to stay in the DoD market

Around and after the effective date

DoD begins using waivers for mission-critical operations or scientifically valid research when needed

In urgent cases, DoD can keep operations or research moving, but the purchase will come with extra justification and security steps

Related News

1 article

Senator John Cornyn (Press Release)·11 months ago

Cornyn, Peters, Fallon, Khanna Introduce Bill to Bolster Defense Cybersecurity, U.S. Supply Chains

Announces the SAFE Supply Chains Act requiring DoD to buy covered ICT hardware from OEMs or authorized resellers, with waiver notifications to congressional defense committees and reporting requirements.

Source Information

Document Type

Congressional Bill

Official Title

SAFE Supply Chains Act

Bill NumberS 1362

Congress119th Congress

ChamberSenate

Latest ActionRead twice and referred to the Committee on Armed Services.

Sponsor

Cosponsors

(1)

D: 1

Data Sources

Congress.gov

Official legislative information

Analysis generated by AI. While we strive for accuracy, this should not be considered legal or professional advice. Always verify information with official government sources.