Trump Administration Updates Cybersecurity Regulations, Supersedes Previous Directive

US President Donald Trump has issued a new cybersecurity-related Executive Order, which supersedes prior directives issued by past administrations. This order notably restricts the application of cyber sanctions solely to foreign malicious actors, effectively reversing the broader authorities that were previously established.

The decision aims to prevent potential misuse of these sanctions against domestic political opponents and clarifies that they do not pertain to election-related activities, according to a White House press release issued on June 6, 2025.

Additionally, the Trump Executive Order modifies previous mandates, particularly those outlined in the Biden Administration’s 2025 Executive Order (EO 14144). Key alterations include the removal of requirements for software vendors to demonstrate compliance with new federal security standards, the prioritization of research and development in AI-based cyber defense, and the accelerated implementation of post-quantum encryption (PQC).

The White House has characterized the adjustments made by the Trump administration as necessary, suggesting that the prior administration’s attempts to incorporate complex issues into cybersecurity policy were misplaced.

Major Changes to Cybersecurity Initiatives

Significant revisions from earlier Executive Orders involve:

– The termination of the voluntary cybersecurity certification and labeling program for IoT devices, originally introduced under Biden to enhance consumer security and transparency.
– Adjustments or eliminations of certain supply chain security measures, which were considered excessive burdens on businesses, thus potentially easing procurement restrictions for software and hardware.
– Revising or discarding portions of Biden’s AI cybersecurity guidelines that linked AI security with broader regulatory frameworks, which may affect the integration of AI into cyber defense tactics.
– Dropping previous requirements for government agencies to undergo testing for phishing-resistant authentication.

Focus on Vulnerability Detection

The newly announced Executive Order aspires to bolster U.S. cybersecurity through multiple initiatives, including:

– Promoting secure software development practices across federal agencies.
– Enhancing border gateway security to thwart network hijacking.
– Channeling AI cybersecurity efforts toward vulnerability detection rather than censorship.
– Establishing machine-readable cybersecurity standards and IoT trust designations for consumer devices.

The administration has emphasized its commitment to achieving a secure cyber environment, detailing plans to focus on technical and organizational professionalism to improve the security and resilience of national information systems and networks.