FCC pushes ban on security updates for foreign-made routers, drones to 2029

The Federal Communications Commission (FCC) on Friday extended its deadline for a ban on software and firmware updates for foreign-made routers, updating a controversial decision announced in March that was opposed by the tech industry.

The router deadline, originally slated for March 1, 2027, has been pushed back to at least January 1, 2029, according to the announcement from the FCC’s Office of Engineering and Technology (OET).

The agency also extended a deadline for foreign-made drones to continue receiving software and firmware updates to January 1, 2029 from January 1, 2027.

Many routers used by Americans are manufactured overseas, raising the possibility that it would be difficult to patch security flaws under the rule. The proposed ban only applies to future imports.

The bans were prompted by pressure from the White House, which has said that drones and routers manufactured overseas threaten national security. However, not allowing security updates to apply to routers and drones opens up new risks, a dynamic officials appear to be cognizant of given the extension.

OET moved to push back the deadlines until 2029 out of concern for “the public interest,” according to the announcement.

The delay comes after the Consumer Technology Association, North America’s largest technology trade group, sent the FCC a letter arguing for a deadline extension following a meeting with FCC staff during which it relayed its concerns.

The agency said the deadline extension will allow updates to “ensure the continued functionality of the devices, such as those that patch vulnerabilities and facilitate compatibility with different operating systems.”

“OET finds that special circumstances warrant a deviation from the general rules and the public interest would be better served by extending the waiver of the prohibitions,” the announcement said.

The announcement also said that OET recommends the agency consider a rulemaking process to formalize the waivers, raising the possibility that they could be extended past 2029 or that the proposed ban on updates could even be reversed.