Public Safety committee  I think the challenge I face here is really from a cybersecurity perspective. My advice would really be to the potential victims and how to protect things, protect themselves and try to keep themselves from getting into that situation, and really thinking before you share informa

Public Safety committee  That's an interesting question. I think we're faced with the challenge that an insider threat, which is really what we're talking about, is something that kind of hits different facets. One is that the person is in a position of trust and does do have access to types of data and

Public Safety committee  I fear that's a question that gets me into legal territory, for which I am wholly unqualified.

Public Safety committee  Great. Thank you for that question. There are risks, and it depends on which country we're looking at. Specifically recall that we talked about state-owned enterprises and partnering with those. This is where, depending on the Canadian business, there's quite a lot of advice out

Public Safety committee  We take two billion actions per day to prevent some malicious activities. Some of those are scanning the government, looking for vulnerabilities. Others are malware that is attempting to have itself downloaded.

Public Safety committee  Well, some of it is bulk scanning. It's like somebody is going to every government computer and rattling the doors and checking the windows to see if you left anything unlocked. So we stop that. If you can't see our vulnerabilities, you can't exploit them.

Public Safety committee  Well, it's a disturbing question just because of the material, but it's a deep question as well. I think the broader answer, the best position, would come from my colleagues at Public Safety Canada who really are looking at the online harms aspect to see how to reduce that. Some

Public Safety committee  I really wish my colleagues from Canadian Security Intelligence Service were here to take the lead on this. From our perspective in the cybersecurity realm, our challenge really is trying to inform people, through a national cyber-threat assessment, and to say, “look for factual

Public Safety committee  I'm going to assume that you're talking about the work of the security and intelligence threats to the elections task force that CSE chaired on behalf of the community. We're doing a few things. We did work with Elections Canada to support them overall on cybersecurity. I could

Public Safety committee  We are part of the Department of Defence and we report to that minister. We report to the minister, but we are a separate agency under Defence. I almost slipped back seven years there for a second. With “cyber defence” we're really talking about when we're actively doing somethi

Public Safety committee  Yes, I just want to say finally that part of the CSE Act is about defensive cyber-operations and foreign cyber-operations and being able to take action when Canada is threatened and with the authorization or the acknowledgement of the Minister of Foreign Affairs and the Minister

Public Safety committee  It's certainly a challenge, and I wish I had an answer to that question. It's certainly one of the challenges we face. The COVID alert app was a frustrating experience because of that exact concern. From my perspective, the application was built in the open. We tested it with co

Public Safety committee  That question really goes to some of the heart of what we've been doing. The goal is to not have this information sitting inside of the federal government, but to get it out to into other hands. I mentioned this earlier when I talked about the weekly call we do with the health se

Public Safety committee  That's big. We're really talking about some of the things we've highlighted in our first and second “Cyber Threats to Canada's Democratic Process” reports that we've issued to really try to highlight some of those. It remains a challenge. Now, I think the response isn't necess

Public Safety committee  I'll have to be careful because the policy decision is still pending. In general, what we're looking at when we're looking at anything approaching a 5G network is that the system needs to be secured in layers, everything from how it's maintained to who's accessing it, to the var