With the preponderance of IT devices and chipsets being manufactured in China, there is a distinct possibility that the PLA is hard-coding spyware and back-doors in the hardware built there. Acquisition laws need to specifically require that all components & sub-components used in sensitive IT / data communications systems be built / fabricated and assembled by U.S. companies in the US. Further, safeguards (inspections and process reviews) are essential to ensure the workforce is trustworthy and manufacturing processes are not compromised, much the way the FDA inspects and certifies medication and medical equipment manufacturing.
Idea No. 29