The new directive, issued on 4 January by the White House Office of Science and Technology Policy (OSTP), feeds into a roiling political debate about how to protect federally funded research from attempted theft by some foreign governments. In recent years, the federal government has prosecuted some two dozen academics for failing to disclose financial ties to China, which critics say has criminalized minor violations of often confusing federal rules and chilled research collaborations.
The 34-page OSTP memo fleshes out a proposal to improve research security issued 1 year ago, in the final days of then-President Donald Trump’s administration, as well as a recent congressional mandate with the same goal. Academic research administrators expect it to help clarify the responsibilities of faculty and their institutions, which officially are the recipients of any federal grant.
“This will provide consistent guidance to those [within government agencies] writing the rules,” says Mary Millsaps, director of research compliance at North Carolina State University. “And that’s been missing.”
Unfortunately, according to university administrators, what is still missing is any guidance on the specific research affiliations that pose a risk to national security and might prevent a scientist from obtaining federal funding. Having a list of so-called bad actors researchers should avoid, they say, would help them in advising faculty who are applying for federal grants.
Not having such information could put “undue, vague, and implicit pressures on researchers,” OSTP Director Eric Lander concedes in an introduction to the memo. That uncertainty, he adds, could “create a chilling atmosphere that would only constrain and damage the U.S. scientific enterprise.”
But Lander promises that “OSTP intends to address [such questions] in the future.” And one federal agency already has. Although the OSTP report doesn’t mention its efforts, the Defense Advanced Research Projects Agency has recently developed and begun to use a risk matrix to vet its top-ranked proposals before making an award (see sidebar, below).
Search for consensus
In addition to laying out what needs to be disclosed, the OSTP guidance covers two other elements of research security. It suggests agencies think about giving every federally funded scientist a digital personal identifier that would reduce the chances of misidentification and make scientists easier to track. It would be accompanied by an electric CV that would be accessible by every agency. The directive also tells agencies to require that institutions provide research security training for faculty and relevant staff, teaching them about everything from the threats posed by cyberattacks to the perils of taking their laptop when traveling abroad.
The guidance also tells agencies to find ways to share information on both violations and “potential violations” of disclosure requirements. The second category raises significant privacy concerns for attorney Audrey Anderson, a former university general counsel now at Bass, Berry & Sims, a law firm. “If an agency later finds [a ‘potential violation’] was not a violation, will they also share that information?” she asks. “An allegation jeopardizes the reputations of the university and the scientist,” she adds, even if they are later found blameless.
But the report’s main thrust is on the need to reach consensus on what must be disclosed when applying for a federal research grant. Lander is asking an interagency group within the White House “to develop model grant application forms and instructions that can be used (and adapted where required) by any federal research funding agency.” And he wants to see those products by early May.
Whatever surfaces is likely to hew closely to what the National Institutes of Health (NIH) and the National Science Foundation (NSF) already require from the institutions they fund. Although their disclosure rules are not identical—they differ in what types of consulting activities, student mentoring, and honoraria need to be disclosed, for example—the two agencies are far ahead of the rest of the federal government in addressing these issues. And the new guidance is intended to prod other research funding agencies into action.
“My guess is that NIH and NSF [officials] will try to harmonize their rules, and then get the other agencies to go along,” says one expert who closely monitors federal regulatory policies for research. “I don’t expect them to go backwards.”
But others fear that is exactly what might happen. “Will there be a fight over which agency gets to be the least common denominator in setting standards for disclosure?” one research lobbyist wonders.
The guidance gives agencies the leeway to tailor their rules to conform to existing congressional mandates, including rules governing the oversight of sensitive technologies. It also allows for variations based on “other compelling reasons.”
That could be a huge loophole and potential stumbling block to developing uniform policies, observers say. “Agencies are always going to insist on having flexibility,” Millsaps says. “But the question is, will they conform to the spirit of the guidance, or will they go rogue?”
Anderson adds another note of caution for those hoping for greater clarify at the 120-day deadline Lander has set. “It’s one thing for the White House to say it, but it’s another thing to do it,” she says. “They have provided agencies with a template and instructions. But will agencies actually implement the guidance?”