Export Controls vs Sanctions: EAR, ITAR, Entity List
How U.S. export controls (EAR, ITAR, Entity List) differ from sanctions in legal basis, jurisdictional reach, and enforcement mechanics.
Two Regimes, One Strategic Toolkit
Export controls and sanctions are often conflated but operate under distinct statutory authorities, administering agencies, and jurisdictional logics. Sanctions, administered chiefly by the Treasury Department's Office of Foreign Assets Control (OFAC) under the International Emergency Economic Powers Act (IEEPA, 50 U.S.C. §§ 1701–1708) and the Trading with the Enemy Act (50 U.S.C. § 4301), block property and prohibit transactions with designated persons or jurisdictions. Export controls, by contrast, regulate the cross-border movement of specific commodities, software, and technology regardless of counterparty — though counterparty screening overlays the system.
The U.S. export control architecture rests on two principal regulations. The Export Administration Regulations (EAR, 15 C.F.R. Parts 730–774), administered by the Commerce Department's Bureau of Industry and Security (BIS), govern "dual-use" items — commercial goods with potential military application, such as semiconductors, advanced computing chips, and certain chemicals. The EAR derives statutory authority from the Export Control Reform Act of 2018 (ECRA, 50 U.S.C. § 4801 et seq.), which made permanent the regulatory regime previously authorized by the lapsed Export Administration Act.
The International Traffic in Arms Regulations (ITAR, 22 C.F.R. Parts 120–130), administered by the State Department's Directorate of Defense Trade Controls (DDTC), govern defense articles and services enumerated on the United States Munitions List (USML). ITAR derives from the Arms Export Control Act of 1976 (22 U.S.C. § 2778). ITAR controls are categorical: any USML-listed item — from F-35 components to certain encryption technology pre-2017 — requires a license for export, re-export, or even disclosure to a foreign national on U.S. soil (a "deemed export").
Classification and the CCL
Under the EAR, every controlled item receives an Export Control Classification Number (ECCN) drawn from the Commerce Control List (15 C.F.R. Part 774, Supplement No. 1). The ECCN, combined with the destination country's column on the Commerce Country Chart, dictates whether a license is required. Items not specifically listed default to EAR99, a residual category covering most low-technology commercial goods, which generally ship license-free except to embargoed destinations (Cuba, Iran, North Korea, Syria, and the Crimea, Donetsk, and Luhansk regions of Ukraine) or restricted end-users.
The jurisdictional reach of the EAR is notably extraterritorial. The Foreign Direct Product Rule (FDPR, 15 C.F.R. § 734.9), expanded dramatically on May 15, 2020 against Huawei and again on October 7, 2022 against China's semiconductor sector, captures foreign-made items produced using U.S.-origin technology or software. The October 7, 2022 controls — codified at 15 C.F.R. § 744.23 — restricted advanced computing chips (defined by performance thresholds in ECCN 3A090 and 4A090) and semiconductor manufacturing equipment to China. The October 17, 2023 update tightened thresholds and added new licensing requirements for additional countries.
De minimis rules (15 C.F.R. § 734.4) likewise extend EAR jurisdiction over foreign-made items containing more than 25% U.S.-origin controlled content by value (10% for items destined to Cuba, Iran, North Korea, or Syria). These extraterritorial mechanisms transform export controls into a global compliance burden far exceeding the narrow logic of border inspection.