Information & Ethics committee  On the basis of what you said, which was on the basis of stolen information, this would be an RCMP mandate.

Information & Ethics committee  Very briefly, when the cyber centre receives a call from a victim on information stolen, identity stolen, we direct that call to the RCMP and they have the authority and the mandate to take action.

Information & Ethics committee  Yes. Mr. Picard, as you mentioned, we examine the threat and the method normally used. We focus on the confidentiality, integrity and availability of systems and networks. Information conveyed over those networks does not come under the CSE's responsibility. We ensure that infor

Information & Ethics committee  Absolutely. Part of the challenge for the Canadian Centre for Cyber Security is developing advice and guidance for all people operating in the cyber environment. One key element of the cyber environment, for you and I and users of that environment, is the cyber hygiene guide, adv

Information & Ethics committee  If I may jump in, based on years of practice, I'll share with you my position on rules. We work in collaboration, as I mentioned, with all participants. People want to secure themselves. All entities and political parties genuinely want to do that. When I work on a model of c

Information & Ethics committee  In the example you cited, it's a bit like the old white and yellow pages in the phone books that used to be distributed. There are varying degrees of information. If your information has appeared on the Internet, then it's all around the world because it's on several global serve

Information & Ethics committee  This goes to the security end of our organization. Maybe piling on a little bit on what Dan has said about the team and the size of the team, the power of 2,500 is really the power of 2,500 plus our Five Eyes colleagues, and that helps you scale, when you're facing foreign thre

Information & Ethics committee  I'm extremely confident, and I'm convinced Canadians should be confident as well. This is the message I give my own children: go vote with confidence because a lot's been done over many years to guarantee our democratic process is sound.

Information & Ethics committee  In fact, the study doesn't go into that level of detail. When we looked at the problem as a whole, we realized we could do something with Elections Canada and the machinery to protect the democratic process. However, where it was worth investing was in the politicians, the politi

Information & Ethics committee  That's an excellent question. In actual fact, the CSE already protects the Canadian government. Over the years, we've had to learn to deal with that kind of threat. You're entirely right. If it took us two days to react, we'd be in a very bad way. Consequently, we've put systems

Information & Ethics committee  The cybersecurity responsibilities we have under our mandate limit what we can do to help you. The best thing we can do is help prevent the problems and ensure that people don't wind up in trouble. You raise a very valid argument. However, once the threat he has emerged, the Can

Information & Ethics committee  I'm not a legal expert, but I can tell you from experience that we've successfully combined individual and systems protections under our present laws to defend the Canadian government very effectively. I hope that evidence reassures you.

Information & Ethics committee  Don't overlook the fact that threats are categorized and that we examine them based on their type. That gives us information on the measures or methods that these businesses normally use. The measures we take are based on the threat type.

Information & Ethics committee  The very short answer is yes, but I'll nevertheless give you a little context. You have to be pragmatic. I meet with corporate boards and presidents to discuss the idea of introducing security measures, whether it be to protect privacy or to ensure overall security, to preserve

Information & Ethics committee  Absolutely. Of course, we already provide advice and guidance on how to secure the devices, the utilization of devices, and so on and so forth. I'll leave that aside. Just to follow up on Dan's point, when the teams are informed that there's activity in a foreign space, I think