Corp Comm Connects


2015 budget outlines ‘cyber security’ legislation

Legislation will set standards for companies operating “vital cyber systems” to safeguard their network’s security and to report hacking to Ottawa.

Thestar.com
April 21, 2015
By Alex Boutilier

The Conservatives have released the first details on new “cyber security” legislation that has been quietly in the works for months.

Budget documents released Tuesday reveal new legislation will set standards for companies operating “vital cyber systems” to safeguard their network’s security, meet “robust” security goals and report hacking incidents to the federal government.

It’s not clear how far the definition of “vital cyber systems” will extend, but it’s expected the legislation will mostly focus on large companies like telecommunication firms and Internet service providers.

“Canadians are embracing the many advantages that the Internet offers, but our increasing reliance on cyber technologies makes us more vulnerable to those who would seek to attack and undermine our digital infrastructure and threaten our national security, economic prosperity and way of life,” the documents read.

They are the first details about the Protection of Canada’s Vital Cyber Systems Act, a piece of legislation that has been quietly in the works for months. Repeated interview requests about the legislation have been declined by Public Safety Canada, as the legislation has yet to be tabled.

The federal government will commit $36.4 million to putting the program in place over five years, beginning with $3 million this year.

It will partner with provinces, territories and private industry to carry out the plan. That’s expected to take place over several years, an official said Tuesday.

“Canada’s economic prosperity and Canadians’ security depend on the smooth functioning of systems outside the government,” the documents read. “In co-operation with provincial and territorial governments and the private sector, the government will support initiatives and take steps to strengthen the resiliency of Canadian cyber systems, including critical infrastructure.”

The federal government will develop and hand out security tools, information, and expertise to implement the initiative, the documents said.

It’s not clear whether Public Safety will attempt to push a stand-alone piece of legislation through Parliament this spring there are only eight sitting weeks before the summer break or if it will be tacked onto the budget implementation bill, expected in coming weeks.