Public Accounts Committee on June 3rd, 2008

Thank you very much, Mr. Fonberg.

Mr. Williams, you have seven minutes.

Thank you very much, Mr. Chairman.

First I have to say that I'm not exactly sure why we have such a lineup of high-priced people here with us today. We have the Auditor General and her entourage. We have the Vice-Chief of the Defence Staff with a whole entourage of military people. I thought we dealt with this issue months ago, and now they're back again. I can't understand, Mr. Chairman, what we're actually trying to achieve here by bringing all these people in for a minor concern or misunderstanding.

Anyway, here they are, and welcome everybody. We'll have our seven minutes, if I can stretch it out that far.

You have six minutes and ten seconds left, Mr. Williams.

Thank you, Mr. Chairman.

Looking at this MOU that we have been given between the Department of National Defence and Defence Construction 1951 Limited, which I think is also called Defence Construction Canada, I'm glad to see that they're taking security seriously, Mr. Chairman. There must be some things in here that we don't need to know, because we've been given the odd-numbered pages but we don't have the even-numbered pages. They must be the ones that have the classified information on them.

The other point I wanted to examine is that the agreement is dated June 2, 2008, which happens to be yesterday. I presume it's the motivation of coming before this committee that caused this to get done.

Am I correct, Mr. Fonberg, that getting this done was an important thing so that one could come to the committee and say we finally have this MOU?

Mr. Williams is quite right. In the reproduction of this, every second page is missing. We will get the entire copy of the contract and will distribute it to the committee members.

You're sure it's not classified, are you?

I'm pretty sure it's not classified.

That's good.

In taking a look at the document I have here, the DCC Security Action Plan, I think, Mr. Chairman, if I recall correctly, that at the last meeting we were unaware—or I was unaware—that there actually was an MOU between Defence Construction Canada and the department and believed they had been operating for 40 to 50 years on a fairly informal arrangement. But I see that this new MOU replaces a previous one, dated May 18, 2001, that actually predates the 9/11 catastrophe in New York. I would have thought, given the whole new security awareness that event caused, that we would review our security in the building of infrastructure before this time.

Do you have any comment on why an old agreement that predates 9/11 was the MOU that was still being used?

Lieutenant General, do you have any comment?

Thank you very much.

I'm not sure I have any further questions. If any of my colleagues have questions, Mr. Chairman, I'll leave the floor to them. As I said, I'm not exactly sure what we can achieve today.

Let me ask one question of the Auditor General. Are you satisfied that progress is being made by the Department of National Defence on this report?

There are two minutes left in that slot.

Mr. Fitzpatrick.

If I understand things correctly, the blueprints for the building were not deemed to be classified. I'm not an expert in this, but it seems to me that the attack on September 11 by al-Qaeda was based on a good deal of knowledge about the design and structure of the towers and the effect of a plane crashing into those buildings: the pancaking effect on the building and so on.

It would seem to me—I don't want to sound like a Maxwell Smart or somebody—that if you're designing something for NORAD, it would be highly critical that the building be free of any risk from terrorists attacks, or that you would attempt to minimize the risk. To have blueprints out in the public domain would just be an invitation for these people to know what the design vulnerabilities of these buildings are.

Am I missing something here, or can you satisfy me on this point? It seems to me rather odd or strange that blueprints would not be classified information.

I assume if they're not classified, they're out in the public domain and people can look at those blueprints.

Is part of the reason for maybe not being strong on classifying this is because you have to line up a contractor and you have to line up skilled labour to build this? We're in a tight labour market in this country and it's hard to get good contractors since they have lots of work to do, so you'd be really limiting the pool if you classified the blueprints. Would that be one of the difficulties?

Thank you very much, Chair.

I want to make a note of what you just said and I'm going to come back to that.

Let's put a focus to this. Mr. Williams is trying to suggest that this is only a gathering of folks with no real purpose. The fact is that we did deal with this once in a chapter review. We found serious problems. The Auditor General--I want to remind everybody--on February 26 of this year said in her opening remarks:

We found serious weaknesses at almost all levels in the processes set up to ensure the security of government information in assets entrusted to industry.

And on the same day, Mr. Scott Stevenson, the acting ADM at the time, said:

I have just outlined a number of specific actions the department has undertaken or will undertake to address the concerns raised by the audit. I can assure you that the Department of National Defence is committed to ensuring that sensitive information and assets entrusted to industry through contracting are properly safeguarded. As a result of the Auditor General's report, the Department of National Defence is making significant improvements to our security provisions.

We had our meeting and we had not yet met to write our report. In the interim, along come these headlines showing that these plans are in the garbage. We've brought you back here to find out where we are on this issue. Is it closer to the opening comments that the Auditor General made, that things are serious and there are weaknesses and this is another example of that? Or are the comments that everything is fine true, and we don't need to worry about anything? Or were we given nice little assurances, patted on the head, and the reality is that we still have continuing weaknesses? Hence the hearing to find out which of those two applications would apply vis-à-vis these blueprints being found in the garbage; let's understand this.

I understand the point being made that they weren't classified as...is “secure” the correct term?