【軍傳媒/國內軍事新聞】2026 年 XPONENTIAL無人載具與自駕系統展,於5月11日至14日在美國密西根州底特律 Huntington Place 舉行。主辦單位AUVSI將XPONENTIAL定位聚焦在無人、機器人與自主系統的國際展會,涵蓋空中、陸地、海上與太空等應用領域,而今年選在底特律舉辦,也暗示自主系統正在與美國汽車工業、國防製造、供應鏈韌性及次世代移動科技匯流。
與過去單純展示飛行器、地面車輛或感測器等硬體為主不同,2026年 XPONENTIAL的主軸已明顯轉向「人工智慧自主系統如何真正進入實戰任務」。官方議程特別強調 AAM、AI、海事自主與國防自主等領域,並透過 Michigan Defense Exposition(MDEX)與 AUVSI Defense Theater 的結合,讓美國國防買主、主承包商、創新中小企業與學研單位在同一展場中對接。主辦方也指出,MDEX 目的在於促進國防採購、次世代防衛科技、供應鏈韌性、製造準備度與快速部署能力的交流。
近年全球無人載具市場因戰爭導致的結構變化,俄烏戰爭使無人機、反無人機、巡飛彈、低成本精準打擊與戰場即時偵察成為各國國防採購焦點、中東衝突與紅海危機則讓海上無人系統、艦隊防空、感測網路與低成本飽和攻擊防護更受重視。XPONENTIAL 2026 不只是技術展示場,更像是國防供應鏈重組、市場需求驗證與國際合作洽談的平台。
今年中科院首度加入台灣館參展,意義不只在於「把產品帶到美國展場」,而是把台灣無人機產業鏈整合能力放到國際國防供應鏈標準下接受檢視。中科院由院長李世強親率團隊參展,展示項目包括勁蜂 II 型、勁蜂 III 型攻擊無人機、銳鳶 II 型多功能海用無人機、小型渦輪噴射引擎、10 吋雷射標定光電酬載及無人機多用途彈頭等,引起各國關注,其中小型渦輪噴射引擎與多用途彈頭已引發技術合作與採購洽談。
從展品組合來看,中科院此次並非只展示單一無人機平台,而是呈現包括平台、動力、酬載、任務彈頭等的完整研發成果。產品勁蜂系列對應低成本攻擊與戰術打擊需求;銳鳶 II 型多功能海用無人機可連結海上監偵與任務支援;小型渦輪噴射引擎則觸及無人機、遊蕩彈藥系統與高速靶機等領域的核心動力技術;雷射標定光電酬載與多用途彈頭則對應偵打一體化與任務模組化。這種展示方式,比單純陳列機體更能向潛在合作方傳達:台灣從只會組裝無人機,逐漸具備關鍵子系統研發、任務酬載與軍規整合製造能力。
此次除了展示研發成果,中科院在台灣館中展示中科院無人機產線CMMC(Cyber security Maturity Model 資通安全成熟度認證模型2.0Certification2.0)的合格證書,這是美國戰爭部為了加強國防工業網路安全,所推行的認證計畫,其主要目的在於確保國防承包商及分包商能有效保護「聯邦合約資訊(FCI)」與「受控飛機密資訊(CUI)」,以防止機敏資訊外洩;這張證書不僅代表了中科院對網絡安全的落實,更代表了中科院已是美國認可的合格國防供應商。
這張證書的關鍵意義在於它不是一張「資安獎狀」,而在於它是進入美國國防供應鏈的合規門檻之一。美國官方 CMMC 說明指出,Level 2 的核心是 Broad Protection of CUI,也就是針對受控非機密資訊提供廣泛保護;Level 2 依招標條件與資訊類型,可能需要自我評估或由授權 CMMC 第三方評估機構 C3PAO 進行獨立評估,並需每年確認符合 NIST SP 800-171 Revision 2 的 110 項安全要求。若是 Level 2 C3PAO 評估,結果會進入 CMMC eMASS,狀態原則上自 CMMC Status Date 起有效三年。
白話一點說明,CMMC Level 2 並不是單純檢查防火牆或防毒軟體,而是要求組織在存取控制、事件回應、風險管理、資安意識訓練、系統監控與資料保護等面向形成可被稽核的制度。中科院自 2023 年起即由軍通中心等相關研製受稽單位進行內部資安稽核、員工訓練、導入監測工具、多階段模擬評鑑,以及數百小時系統強化與流程優化,最終通過第三方 C3PAO 稽核,取得 CMMC Level 2 合格證書,並成為美國 CMMC 法案公告後,台灣國內第一家主動申請並通過 Level 2 驗證的機構。
中科院為取得加入美國國防供應鏈的必要條件,循美國國防授權法 NDAA 相關原則及 CFR 法規條款,於 2023 年展開「愛國者飛彈系統雷達子天線」驗證,並於 2025 年 11 月獲頒 CMMC Level 2 合格證書;隨後因無人機飛控、通訊與資料處理多屬 CUI,對資安防護要求更嚴格,中科院自 2024 年 7 月起再度申請 CMMC 評鑑。中科院此次展示的無人機產線 CMMC 認證,是從飛彈系統相關驗證延伸到無人機研製鏈的制度化升級。中科院整備過程依循 NIST SP 800-171 標準,檢視 110 項資安管理控制制度與措施,並透過內部稽核、員工訓練、多階段模擬評鑑與情境演練,歷經一年多嚴格評鑑後,近期順利通過第三方 C3PAO 評鑑,並刊登於美國國防產業供應鏈網站。
仔細觀察CMMC Level 2 證書,該證書授予對象為 National Chung-Shan Institute of Science and Technology Aeronautical Systems Research Division,也就是中科院航空研究所;證書標示為 FINAL CMMC Level 2(C3PAO),CMMC UID 為 L200002102,評鑑日期為 2026 年 3 月 17 日至 5 月 2 日,CMMC Status Date 為 2026 年 5 月 3 日,到期日為 2029 年 5 月 2 日,C3PAO 為 Lazarus Alliance。這些欄位代表該認證具有特定範圍、特定資訊系統與三年有效期間,並非可任意轉移到所有單位或所有系統的泛用認證。
這對目前強調的發展台灣國防產業尤其重要,無人機系統的價值不只在機體與飛控,更包含任務資料、軟體更新、加密通訊、供應鏈版本控管、酬載介面、地面站資料鏈與戰術運用參數。若一家供應商無法證明其資料處理環境符合 CUI 防護要求,即使產品性能具吸引力,也可能在美國或盟邦國防採購案中遭遇合規阻礙。中科院取得 FINAL CMMC Level 2(C3PAO)資格,代表其特定受評資訊系統已通過第三方稽核,可作為未來爭取美方高階國防合作、技術分工與供應鏈角色的重要基礎,也象徵中科院具備承接美國高階國防專案的資安治理能力。。
中科院此次在 XPONENTIAL 展示 CMMC 證書,等同對國際買家宣告,中科院從過往聲名在外的逆向研發單位,轉型後到具備符合國防採購要求的資安治理能力。也協助建立台灣無人機產業可信賴供應鏈的形象,國際合作越往軍規與敏感技術靠近,越不可能只看產品規格,還會檢查研製流程、資訊安全、資料權限與供應鏈防護等,以實力證明自身如浴火鳳凰一般重生。對台灣其他國防廠商建立了良好的示範案例,說明要進入美國或盟邦國防供應鏈,資安認證、制度稽核與可追溯管理將和飛行性能、酬載能力、成本優勢一樣重要。
中科院自現任院長上任後,進行了許多的改革,也展現了不壹樣的企圖與成果。這次參展向外界展示中科院獲得進入國際軍火供應商的門票,正好可以扮演台灣軍工產業的領頭羊角色。然而參照過往經驗,中科院的軍事裝備輸出最後都卡在國安高層的審查,不管是從紅隼一代到M60戰車的升級,與民間廠商合作外銷軍規無人機等,最後都是以符合國內需求優先(結果國內軍種不採購)、技術能力不能太高(怕機密洩漏)、技術層次也不能太低(怕影響國際觀感)、不知道最後流向哪裡(這是最終使用者的責任)等莫名其妙的理由阻止,導致時機已過胎死腹中,若不改變此觀念,台灣的需求不可能催生活得下去的國防產業,就會像現在一樣充斥一次性廠商,也導致大眾對商業採購的不信任。
若說無人機是未來戰場的消耗性武器與感測節點,那麼 CMMC 這類資安認證就是進入國際國防工業網路的信任憑證。中科院從 2023 年展開雷達子天線驗證,到 2025 年取得首項 CMMC Level 2,再到 2026 年於XPONENTIAL 展場公開展示無人機產線完成相關評鑑,台灣國防產業正逐步與國際標準接軌,也是未來無人載具、飛彈、火工與關鍵國防技術能否走入盟邦市場的重要起點。
In 2026, Taiwan’s National Chung-Shan Institute of Science and Technology (NCSIST) appeared at the XPONENTIAL unmanned systems and autonomous technology exhibition with a significant milestone: the public display of its CMMC Level 2 certification. The event, held May 11–14 at Huntington Place in Detroit, Michigan, highlighted the growing convergence of autonomous systems, defense manufacturing, artificial intelligence, and resilient supply chains.
Organized by AUVSI, XPONENTIAL has evolved beyond a traditional unmanned systems exhibition. While previous years focused heavily on hardware such as drones, ground vehicles, and sensors, the 2026 edition emphasized how AI-enabled autonomous systems are transitioning into operational military and security missions. Through programs such as the Michigan Defense Exposition (MDEX) and the AUVSI Defense Theater, the exhibition connected defense buyers, prime contractors, innovative startups, and research organizations within a single integrated defense ecosystem.
The global unmanned systems market has undergone dramatic transformation in recent years due to modern warfare. The Russia-Ukraine War demonstrated the battlefield value of drones, loitering munitions, counter-UAS systems, and low-cost precision strike capabilities, while conflicts in the Middle East and Red Sea highlighted the importance of maritime autonomous systems, distributed sensing networks, and protection against saturation attacks. XPONENTIAL 2026 therefore became more than a technology showcase — it served as a platform for defense supply chain restructuring, operational validation, and international cooperation.
This year marked NCSIST’s first participation as part of the Taiwan Pavilion. The significance extended far beyond simply displaying products in the United States. Instead, it represented Taiwan’s unmanned systems industry presenting itself under international defense supply chain standards. Led by NCSIST President Dr. Lee Shih-Chiang, the delegation showcased the Chien Hsiang II and Chien Hsiang III attack drones, the Rui Yuan II multifunction maritime UAV, a compact turbojet engine, a 10-inch laser designation electro-optical payload, and modular unmanned system warheads.
Among these exhibits, the compact turbojet engine and modular warhead systems attracted particular interest from international visitors and reportedly initiated discussions regarding procurement and technical cooperation. The overall exhibition strategy demonstrated that NCSIST was not merely presenting individual drone platforms, but an integrated ecosystem encompassing propulsion, payloads, mission systems, and weapons integration capabilities.
The Chien Hsiang series reflected Taiwan’s growing emphasis on low-cost precision strike and tactical attack systems. The Rui Yuan II maritime UAV demonstrated capabilities linked to maritime surveillance and operational support. Meanwhile, the compact turbojet engine addressed one of the most critical technologies in modern unmanned systems, including applications for UAVs, loitering munitions, and high-speed target drones. Combined with laser designation payloads and modular warheads, the display highlighted Taiwan’s gradual transition from drone assembly manufacturing toward independent development of key military subsystems and integrated mission capabilities.
However, the most strategically important display may not have been a drone at all. Inside the Taiwan Pavilion, NCSIST prominently displayed its Cybersecurity Maturity Model Certification (CMMC) Level 2 certificate for its unmanned systems production line. The CMMC program, established by the U.S. Department of Defense, is designed to strengthen cybersecurity within the defense industrial base by ensuring contractors and subcontractors can properly protect Federal Contract Information (FCI) and Controlled Unclassified Information (CUI).
This certification represents far more than a cybersecurity award. In practical terms, it serves as one of the key compliance requirements for entering the U.S. defense supply chain. According to official U.S. CMMC guidance, Level 2 certification focuses on the broad protection of Controlled Unclassified Information and requires organizations to comply with all 110 security requirements defined in NIST SP 800-171 Revision 2. Depending on the contract requirements, organizations must either conduct self-assessments or undergo formal third-party audits conducted by authorized C3PAO assessors.
In simple terms, CMMC Level 2 does not merely evaluate firewalls or antivirus software. It requires a complete, auditable cybersecurity governance framework covering access control, incident response, risk management, employee cybersecurity awareness, system monitoring, and data protection procedures.
NCSIST began preparing for these requirements in 2023 through extensive internal cybersecurity audits, employee training, monitoring system implementation, multi-stage simulation assessments, and hundreds of hours of system hardening and process optimization. Following third-party evaluation by a certified C3PAO organization, NCSIST successfully obtained FINAL CMMC Level 2 certification, becoming the first organization in Taiwan to proactively apply for and pass a Level 2 assessment after implementation of the official U.S. CMMC framework.
The certification displayed at XPONENTIAL specifically applied to the Aeronautical Systems Research Division of NCSIST. Issued under FINAL CMMC Level 2 (C3PAO), the certification carried CMMC UID L200002102, with evaluation conducted between March 17 and May 2, 2026. The certification became effective on May 3, 2026, and remains valid until May 2, 2029. The authorized assessing organization was Lazarus Alliance.
This distinction is important because the certification applies only to specific systems and evaluated environments, not universally across all NCSIST divisions. Nevertheless, its strategic value is enormous. Modern unmanned systems depend heavily on secure communications, software updates, mission data handling, encryption, and protected supply chain management. Even technologically advanced products may be excluded from U.S. or allied procurement programs if suppliers cannot demonstrate secure handling of sensitive information.
By obtaining FINAL CMMC Level 2 certification, NCSIST has demonstrated that specific evaluated systems within its unmanned systems development chain now meet U.S. defense cybersecurity compliance requirements. This establishes a foundation for future participation in high-level U.S. defense cooperation, joint development programs, and international supply chains.
NCSIST’s public display of the certification at XPONENTIAL effectively signaled its transformation from a domestically focused reverse-engineering institution into an internationally compliant defense supplier with recognized cybersecurity governance capabilities. It also helped strengthen the credibility of Taiwan’s broader unmanned systems industry in the global defense market.
As international defense cooperation increasingly focuses on sensitive technologies and military-grade systems, product performance alone is no longer sufficient. International partners now evaluate cybersecurity governance, development processes, data access controls, and supply chain protection with equal scrutiny. In this sense, NCSIST’s achievement serves as a significant demonstration for Taiwan’s defense industry: future participation in allied defense supply chains will depend as much on cybersecurity compliance and institutional governance as on flight performance or payload capability.
At the same time, challenges remain. Historically, several Taiwanese defense export initiatives have struggled due to lengthy political reviews and regulatory uncertainty. Previous projects involving missile systems, armored vehicle upgrades, and export-oriented UAV cooperation have often faced delays or cancellation due to concerns over technology security, end-user uncertainty, or shifting domestic priorities. Without more flexible export policies and sustained international cooperation mechanisms, Taiwan may struggle to build a sustainable defense industrial ecosystem capable of long-term growth.
If unmanned systems represent the expendable weapons and sensor nodes of future warfare, then cybersecurity certifications such as CMMC represent the trust credentials required to enter the international defense industrial network. From beginning radar subsystem validation efforts in 2023, obtaining its first CMMC Level 2 certification in 2025, and publicly displaying its certified unmanned systems production line at XPONENTIAL 2026, NCSIST has demonstrated Taiwan’s gradual alignment with international defense industry standards — an important step toward future participation in allied markets for drones, missiles, precision munitions, and advanced defense technologies.