SEC. 231.

Pilot program on technologies to strengthen authentication and attribution of human authorization for consequential actions

DIVISION A · TITLE II: RESEARCH, DEVELOPMENT, TEST, AND EVALUATION · SUBTITLE B: Program Requirements, Restrictions, and Limitations

Source
SECTION TEXT · SEC. 231.

(a) Pilot program authorized

The Secretary of Defense may carry out a pilot program to evaluate commercially available technologies that strengthen authentication and attribution of human authorization for consequential actions in order to improve the cybersecurity and physical security posture of the Department of Defense.

(b) Objectives

Under the pilot program, the Secretary of Defense shall evaluate technologies that—

(1)

strengthen access controls for systems and physical areas of the Department of Defense; and

(2)

can be integrated across various environments of the Department without requiring specialized hardware.

(c) Comencement and duration

If the Secretary of Defense exercises the authority to carry out the pilot program under subsection (a), the program shall—

(1)

commence not later than 180 days after the date of the enactment of this Act; and

(2)

terminate not later than one year after the date on which the program is commenced.

(d) Report

Not later than March 1, 2028, the Secretary of Defense shall submit to the congressional defense committees a report that includes—

(1)

a summary of the results of the pilot program under subsection (a); and

(2)

recommendations regarding adoption the technologies evaluated under the program at a wider scale across the Department of Defense.