US SB3404

Requires the Government Accountability Office to conduct a study and report to Congress within 2 years on federal actions to support commercial satellite cybersecurity, including effectiveness of efforts, reliance on satellites by critical infrastructure, and federal agency dependence on foreign-owned satellite systems

Directs the Secretary of Commerce to establish a publicly available online cybersecurity clearinghouse within 180 days, containing voluntary recommendations and resources for entities that develop, operate, or maintain commercial satellite systems

Mandates consolidation of voluntary cybersecurity recommendations covering risk-based engineering, protection against jamming and spoofing, supply chain risk management, and vulnerabilities from foreign ownership or infrastructure located abroad

Requires the Secretary of Commerce, National Space Council, and Office of the National Cyber Director to submit a strategy within 120 days identifying federal agency roles and responsibilities for addressing commercial satellite cybersecurity

Explicitly states the bill does not designate commercial satellite systems as a critical infrastructure sector or alter existing authorities of federal agencies including DHS, DOD, FCC, and NASA