There are a few things, in particular.
Number one, with the foreign interference transparency regime, there need to be Criminal Code changes that make it a Criminal Code offence not to disclose. Other countries that have this same regime have taken that step, and it has given some meat and teeth to the regime itself.
In terms of CSIS, there are a few things that need to be done. CSIS cannot disclose information that is protected to other levels of government or opposition parties. That was created in its day for a reason, but I don't think it meets the need any longer. They need to be able to discuss classified information.
It would be very useful if they had a method of disclosing that somewhere between their defensive briefs—which is the kind of brief you hear from CSIS when they speak to parliamentarians about, “Here is the threat,” and they speak about it in very general terms—and the threat reduction measures, which are a very formal process, because there is a specific threat against a specific individual, for example.
There should be something in between to allow them to have more general conversations with some protected, classified material, not necessarily disclosing the totality of it but allowing them to have a conversation that is less general.
One of the things we hear from members of Parliament when they have conversations with CSIS is, “I don't really understand at this point if I'm under threat.” That's not because CSIS doesn't want to share information. It means it is limited in what it can share, so that modernization of the CSIS Act would be extraordinarily useful.