The mechanism: Since 2019, Washington has run a two-track campaign against foreign tech in U.S. networks — the FCC's "covered list" bans Huawei and ZTE gear from federally subsidized networks, the Secure and Trusted Communications Networks Act forces small carriers to physically rip out and replace that equipment, and executive-branch app bans (TikTok divestiture, Kaspersky software) extend the logic to software. The 2024 NDAA authorized the FCC to borrow $3.08 billion from Treasury to close a reimbursement shortfall — carriers had asked for roughly $4.98 billion against an original $1.9 billion appropriation. That loan gets repaid from Auction 113 spectrum proceeds, which cleared $3.1 billion-plus in June. The intuitive trade is "ban foreign gear, buy American cyber tools." It doesn't work that way: the freed-up capital is earmarked, tracked, and spent almost entirely on physical network hardware — radios, routers, power supplies, cable — not endpoint detection or zero-trust licenses.

Who cashes in: The real winners are the replacement-equipment vendors, not cybersecurity software. Nokia (NOK) and Ericsson (ERIC) have already won the marquee rip-and-replace contracts — Nokia with Union Wireless, Ericsson taking the bulk of Viaero's funding request — because reimbursement dollars are contractually tied to buying new radio access network gear, not security tooling. Palantir (PLTR) is a partial beneficiary at the margins: its government-integration contracts benefit from the broader "trusted supply chain" push across DoD and intelligence-community procurement, where foreign-hardware exclusion rules feed its existing FedRAMP-adjacent footprint. That's adjacent money, not rip-and-replace money.