Procedure and House Affairs Committee on Feb. 10th, 2011

Should we get involved in techniques to be used after the fact or should we really try to prevent a situation? It's a lot easier to incorporate properties into a document to make sure it will not be altered or distributed, but after it is sent, it becomes more difficult to control it.

As Ms. O'Brien said, the entire structure here is designed to maintain your security, and at the same time to guarantee that your information will not be lost and that it can be located. If something happens and you lose your data, we have to be able to restore it to enable you to continue working.

To answer your question, the emphasis is really not placed on what can be done after the fact.

Yes.

There is the whole watermark technique for paper documents. The same kind of technique certainly exists for electronic documents. But once you add components to limit access to the documents, you have to use much more sophisticated technologies that call for infrastructure and investment, and place a lot of access restrictions on members.

How far do you want to go to guarantee security? I will never be able to guarantee 100% that there will be no malicious intent on the part of someone who decides not to follow the rules.

It will never give that assurance, because the more sophisticated it is, the more capacity for maliciousness there is. In reality, the question is always how to put together a document in the purest possible form, to be able to use it in your work. All the other aspects relate to the packaging of the document, the way the packaging and distribution of the document are overseen.

I have to say no, there is nothing specific. But after my first appearance before the committee, and given the popularity of social media, I understood the need to address the question of confidentiality in the next orientation program for new members.

In fact, we intend to speak with the party whips, because we would like to meet with members—not just new members but the entire caucus—to review certain basic rules, because the environment has changed. Members are sometimes elected for decades and things have changed, but some of them may not have realized it. We would like everyone to start out with the same understanding of the rules.

Well, frankly, Mr. Chair, through you to Mr. Andrews, there's no reason why you shouldn't be allowed to do that. It's just that the question has never come up. Even on the monitoring, as Mr. Andrews puts it, of e-mails, the idea is that the e-mail addresses are assigned to the various assistants in the office and then that's managed by the member. We have no role in that. That's entirely the affair of the member.

So there are no real tools, I guess, put in place to assist the member in monitoring his or her staff. The presumption is that the member, in selecting staff, will have made judicious choices, and that such monitoring will not have to be particularly vigorous.

We'll certainly look into possibilities of what kinds of tools we might be able to make available to members. The committee will understand, of course, Mr. Chairman, that we have cost constraints. We have to juggle things within the question of priority, so it becomes a question of whether this is something that would have a high priority for a lot of members. Unfortunately, I suspect this is the kind of thing that one turns to in a situation where the horse has already bolted, right, and so we couldn't necessarily anticipate the horse doing that.

Again, it's much more complex than the device and the features of the device. It's the complete environment. Madam O'Brien explained at the beginning that we have an environment to conduct the usual day-to-day business of members of Parliament.

If you were in a place like DND, as an example of those places where you want to be purely secure and confidential and you want to control everything, they have a separate environment. They don't use the network. They don't use the mail. They don't use a lot of these things, and you can go so far...it's not just one layer. You have to look at security like peeling an onion. There are many, many layers and securing the device is not helping me if I don't secure the rest of the infrastructure, if I don't secure the wireless network. For PIN to PIN, it's like putting a lot of money in something that is not secure as a technology. CSIS, DND, and the world will tell you that you don't do that. You don't do business on cellulars if it's that confidential. That's why you need to assess the risks and the investment and also manage your environment.

My objective for many, many years has been to try to give the members as much flexibility as possible and not to put on too many constraints. I think every member is unique. You are competitive among one another and therefore I need to give you that flexibility to be who you are and to serve your constituents. Therefore, when you work in Ottawa with the institution, we already have a lot of restrictions. It is a balancing act.

Yes, I think it could be a combination of things. Yes, we can isolate the document in a particular area. I call that a collaboration site. We can put all kinds of restrictions on that site and then for sure we will know who accesses that site. You can say that you cannot change the document and you cannot copy the document. All kinds of things like this can be done.

At the same time, there are some very well established procedures that exist today in the government for secure documents and what you can do. There are all kinds of rules and decisions you need to make on whether you want to make versions of the document, number the documents, or have people sign. There's all kinds of information that exists.

I think the best way to address that for me...I mean, we can make those available, but at the same time, you really have the key in your hands, and the key in your hands is at the preplanning stage of that report, when you have all those questions. Bring this to the attention of the committee clerk, and it will be very clear at that time, and if need be, sit down with each instance and say, “That's the proposed approach for this particular report”.