Evidence of meeting #13 for National Defence in the 44th Parliament, 1st Session. (The original version is on Parliament’s site, as are the minutes.) The winning word was threat.
A recording is available from Parliament.
3:45 p.m.
Conservative
Kerry-Lynne Findlay Conservative South Surrey—White Rock, BC
Ms. Henderson, are you aware of the Chinese national intelligence law that makes it mandatory for state and non-state enterprises to gather intelligence for the Chinese state on demand?
3:45 p.m.
Assistant Director, Requirements, Canadian Security Intelligence Service
Yes, I am aware of that law. It is a law that I believe was brought in in 2017, if I'm correct. That law does compel all Chinese companies to support any requirements of the Chinese government.
3:45 p.m.
Liberal
The Chair Liberal John McKay
Thank you, Ms. Findlay.
Madam Lambropoulos, you have six minutes, please.
3:45 p.m.
Liberal
Emmanuella Lambropoulos Liberal Saint-Laurent, QC
Thank you, Mr. Chair.
I'd like to thank both of our witnesses for being here to answer our questions today.
Ms. Henderson, I'll begin with you. If you believe that Mr. Khoury can answer some of the questions a little more in depth, then I'm happy to have you pass them on as well.
You mentioned that there's been an increase in the sophistication of cyber-attacks over the years, that things are only likely to continue heading in that direction, and that there are more and more of them each time. Do you believe CSIS and its partners have the tools they need in order to meet these new and sophisticated threats? Considering that things are becoming more and more sophisticated as time goes on, do you think these organizations, including yours, will be able to continue to meet these threats and counter them?
3:45 p.m.
Assistant Director, Requirements, Canadian Security Intelligence Service
That's a very good question. Thank you for it.
It's very important, as I think both Mr. Khoury and I have said, that every agency that has national security responsibilities is able to investigate those attacks using the tools that each agency brings to the fight, in a sense. That's why it's extremely important that we all co-operate together in order to fulfill each of our mandates. Within that umbrella, then we can successfully combat the current threat environment that we're facing.
It's also important, I believe, that all Canadians and all businesses and industries also are very aware of the cyber-threat and can then take the necessary precautions and measures to protect themselves. I think it's also important, as we move forward in the future, to make sure that we are continually looking at whether or not we do need new tools and whether or not there are ways in which we can improve. That's why we do talk about looking at modernizing, for example, the CSIS side just to see if there are new tools that we would be able to bring to bear that would help protect Canada and Canadians as we move into the future.
I would reiterate that it's extremely important that each agency co-operate and we do communicate very well together to make sure that we're all using all the tools we have in our tool kit at the moment.
3:50 p.m.
Liberal
Emmanuella Lambropoulos Liberal Saint-Laurent, QC
Thank you very much.
Mr. Khoury, do you have anything to add to that?
3:50 p.m.
Head, Canadian Centre for Cyber Security, Communications Security Establishment
I would echo what Ms. Henderson said. This is a whole-of-society effort. We learn a lot from all of the cyber-incidents in the government. From that experience, we promulgate that information to the public sector and the private sector and Canadian citizens at large and we collectively make a dent in the cost of cybersecurity.
3:50 p.m.
Liberal
Emmanuella Lambropoulos Liberal Saint-Laurent, QC
Thank you very much.
Going on what you just mentioned, which was modernizing the CSIS Act, I'm wondering if there's anything you'd like to mention here—without necessarily compromising Canadian cybersecurity—that we should be looking into, even in our report and our own recommendations here at the defence committee. As well, do any obstacles currently exist that prevent us from improving the current Canadian situation?
3:50 p.m.
Assistant Director, Requirements, Canadian Security Intelligence Service
There are no obstacles, per se, that would prevent us. What I think we need to do is make sure that, one, we have all the tools that are necessary and are fully aware of where technology is moving and how it's developing. Then, it's also extremely important that we balance the rights and privacy of Canadians as we're moving forward.
It's a very delicate way to move forward—to make sure we have the tools to catch the bad guys but also protect the rights of Canadians. It takes quite a bit of research and study to make sure we're getting to where we are and what we need in order to protect our national security.
3:50 p.m.
Liberal
Emmanuella Lambropoulos Liberal Saint-Laurent, QC
Mr. Khoury, do you have any recommendations for this particular study that you'd like to share with us today?
3:50 p.m.
Head, Canadian Centre for Cyber Security, Communications Security Establishment
From a cyber centre perspective, that teamwork across government and across Canada is extremely important. Reporting cyber-incidents will be very important, so that we learn from all of those incidents that are happening and then we can up the cybersecurity of the country.
3:50 p.m.
Liberal
Emmanuella Lambropoulos Liberal Saint-Laurent, QC
Thank you very much.
Mr. Chair, how much time do I have left?
3:50 p.m.
Liberal
Emmanuella Lambropoulos Liberal Saint-Laurent, QC
My next question is in a completely different category and has to do a little more with Russia.
We know that a lot of the cyber-threats we face are coming from Russia. A lot of the cyber-attacks are coming from Russia. I want to know how they are able to deny that they are committing such acts. Who do they use to get to and to influence Canadians in any way to think a certain way?
3:50 p.m.
Assistant Director, Requirements, Canadian Security Intelligence Service
What I would say is that Russia is an extremely capable threat actor. We know that Russian intelligence services have previously engaged in disinformation campaigns to discredit and create divisions in the west, to promote Russia's influence abroad, and to push for an end to western sanctions. We also know that Russia covertly gathers political economic military information in Canada through targeted threat activities in support of its own interests.
While I can't go into any specific measures, I can say that CSIS uses the full suite of its tools at its disposal to counter those Russian activities.
3:55 p.m.
Liberal
The Chair Liberal John McKay
Thank you, Ms. Lambropoulos.
We now have Madame Normandin, for six minutes, please.
March 28th, 2022 / 3:55 p.m.
Bloc
Christine Normandin Bloc Saint-Jean, QC
Thank you, Mr. Chair.
Thank you for being here, Ms. Henderson and Mr. Khoury.
My first question is for Ms. Henderson, but feel free to jump in, Mr. Khoury, if you'd like to answer.
I'd like to know whether Canada has the capacity to track crypto currency transactions in which the sender or receiver is an illegal or terrorist group.
3:55 p.m.
Assistant Director, Requirements, Canadian Security Intelligence Service
Thank you for your question, but I, personally, don't have that information.
I would direct you to FINTRAC, which would be the better department to answer that type of question.
3:55 p.m.
Head, Canadian Centre for Cyber Security, Communications Security Establishment
I, too, was going to say that the Financial Transactions and Reports Analysis Centre of Canada, FINTRAC, would be in a better position to answer that question.
3:55 p.m.
Bloc
Christine Normandin Bloc Saint-Jean, QC
Thank you.
That brings me to another question. Would you say too much of CSE's and CSIS's work happens in isolation? That question could also apply to the armed forces. Do you think the two organizations communicate enough?
3:55 p.m.
Head, Canadian Centre for Cyber Security, Communications Security Establishment
Thank you for your question.
I would say that they absolutely do. We are constantly in contact with our neighbours at CSIS and our counterparts in the Canadian Armed Forces. In fact, we support two of their missions, operations Unifier and Reassurance, so we have good lines of communication when it comes to sharing information with both of those organizations. We also work with institutions government-wide to mitigate risks to the federal government, as well as with provincial and private sector partners.
3:55 p.m.
Bloc
Christine Normandin Bloc Saint-Jean, QC
I have a more specific question on that front.
Ms. Henderson, can you give me an overview of Task Force Osprey's role within CSE? No, actually, that question would be for you, Mr. Khoury. Could you tell me more about Task Force Osprey's role?
3:55 p.m.
Head, Canadian Centre for Cyber Security, Communications Security Establishment
For an answer to that question, I would refer you to the Canadian Armed Forces. If the armed forces can't answer, I can provide the information.