AI Governance Institute logo
AI Governance Institute

Practical Governance for Enterprise AI

· CMP-009High effort

AI Hardware Provenance and Export Control Compliance

Document the origin and supply chain of AI-relevant hardware (GPUs, specialized chips) and screen all AI infrastructure procurement against applicable export control regulations.

Objective

Ensure the organization's AI compute infrastructure complies with export control regulations, avoids use of sanctioned hardware, and can demonstrate hardware provenance in procurement reviews and regulatory audits.

Maturity Levels

1

Initial

Hardware procurement does not include AI-specific export control screening. Provenance is tracked only in standard procurement records.

2

Developing

Export control screening is applied for obviously restricted hardware (e.g., high-end GPUs for export), but systematic provenance documentation for AI infrastructure does not exist.

3

Defined

All AI-relevant hardware procurement is screened against current export control lists (US EAR/EAR99, EU dual-use list) before purchase. A provenance record documents the origin and supply chain for each major compute asset.

4

Managed

Provenance records are auditable and linked to vendor contracts. Hardware from vendors with incomplete provenance documentation is flagged before deployment. Export control screening is re-run when sanctions lists update.

5

Optimizing

The organization requires contractual attestation of semiconductor manufacturing origin from cloud providers and hardware vendors. Provenance verification feeds into the AI system risk register.

Evidence Requirements

What an auditor or assessor would expect to see for this control.

  • Hardware provenance registry listing all AI-relevant compute assets with manufacturer, country of origin, export control classification, and screening date.
  • Export control screening records for each AI hardware procurement in the past 24 months.
  • Vendor attestation or contractual clause covering hardware provenance for significant compute infrastructure.

Implementation Notes

Key steps

  • Define AI-relevant hardware in scope: GPUs used for model training or inference, specialized AI accelerators, high-performance networking used in AI compute clusters, and edge AI hardware with sensitive deployment contexts.

  • Establish a hardware procurement screening workflow:

    1. Before procurement, identify the Export Control Classification Number (ECCN) for the hardware.
    2. Check the product against US Bureau of Industry and Security (BIS) Entity List, Denied Persons List, and Unverified List.
    3. Check against EU dual-use export control list if the organization is based in or ships to the EU.
    4. Screen end-use and end-user against prohibited uses (weapons of mass destruction, military end-use in controlled jurisdictions).
    5. Document the screening outcome and retain records for at least 5 years.

  • Maintain a hardware provenance registry:

    • For each major AI compute asset, record: manufacturer, country of manufacture, supply chain intermediaries, acquisition date, and export control classification.
    • For cloud compute: obtain attestation from the cloud provider on data center geography and hardware origin where required by regulation.

  • Monitor export control list updates (BIS typically updates quarterly). Re-screen existing inventory when major list changes occur.

  • Include contractual AI hardware provenance clauses in vendor agreements for significant compute infrastructure purchases.

Current regulatory context

  • US Export Administration Regulations restrict export of advanced GPUs (above certain FLOP thresholds) to certain jurisdictions. The specific thresholds and jurisdiction lists change; monitor BIS updates.
  • Oxford Martin AI Governance Institute research has highlighted semiconductor supply chain provenance as a frontier AI safety concern that is transitioning from voluntary to regulatory scrutiny.

Example Implementation

AI Hardware Provenance Registry (excerpt)

Asset IDDescriptionManufacturerCountry of MfgECCNBIS Entity List CheckAcquisitionProvenance Complete
GPU-CLUST-018x NVIDIA H100 clusterNVIDIA (US)Taiwan (TSMC)3A090Cleared — 2025-112025-11Yes
GPU-CLUST-024x AMD MI300XAMD (US)Taiwan (TSMC)3A090Cleared — 2026-012026-01Yes
EDGE-AI-07Edge inference unit[Vendor]ChinaUnder reviewPendingHoldNo — escalated
CLOUD-AWS-PRODAWS p4d instancesAmazon (US)US (attestation on file)N/A — cloudClearedOngoingYes — AWS attestation 2026-01

Control Details

Control ID
CMP-009
Domain
Typical owner
Procurement / Legal / Security
Implementation effort
High effort
Agent-relevant
No

Tags

hardware provenanceexport controlssemiconductor supply chaincompute securityAI procurement

Related Controls

PRC-005AI Procurement Risk AssessmentCMP-001Multi-Jurisdiction AI Regulatory Compliance MappingDGC-001Training Data Provenance

Related Playbook

How do we govern our AI supply chain and manage upstream model dependencies?How do we manage third-party AI vendors safely throughout the vendor lifecycle?How do we build and maintain a multi-framework AI risk register?How do we engage regulators and standards bodies proactively on AI governance?What are our obligations under emerging AI regulations?How do we ensure third-party AI vendors meet our standards?