Communications Security Establishment
Communications Security Establishment – Main Estimates
- The Communications Security Establishment plays a critical role in protecting Canada’s security, while safeguarding Canadians’ rights.
- It provides valuable foreign intelligence to inform the Government of Canada’s decision making and protect national security.
- Its sophisticated cyber and technical expertise also helps identify, prepare for, and defend against threats to Canada and its cyber systems and networks.
Key Facts
- The Communications Security Establishment's (CSE) 2022-23 Main Estimates are $798.5M, a net increase of $83.9M from the 2021-22 Main Estimates of $714.6M.
- The increase in CSE’s Main Estimates can be attributed to:
- Funding of $20.8M for Canada's Cryptographic Modernization Program/Classification Security Management Infrastructure Project;
- Funding of $23.3M to invest in Canada's foreign intelligence in response to persistent threats;
- Funding of $18.8M to enhance the reliability and security of Government of Canada information technology networks;
- Funding of $1.6M for the national security components of the Retail Payment Activities Act;
- Funding increase of $22.1M associated with collective bargaining increases and changes in statutory authorities;
- Sunsetting of $1.3M in funding for Protecting Canada's Democracy;
- Decrease of $0.9M in funding for the cyber security initiatives; and
- A further net decrease of $0.5M associated with changes in other programs supporting CSE's mandate.
Details
- The Communications Security Establishment's (CSE) 2022-23 Main Estimates are $798.5M, a net increase of $83.9M from the 2021-22 Main Estimates of $714.6M.
- The increase in CSE’s Main Estimates can be attributed to:
- An increase in funding of $20.8M for Canada's Cryptographic Modernization Program/Classification Security Management Infrastructure Project
- This funding will be used to support The Canadian Cryptographic Modernization Program (CCMP) to modernize the Government of Canada’s aging cryptographic equipment and infrastructure in order to safeguard classified information and maintain Canada’s ability to establish secure communications both nationally and internationally.
- Funding for the Classified Security Management Infrastructure (CSMI) Project will support the development and implementation of new cryptographic key management systems that are required to protect the Government of Canada’s communications and information.
- An increase in funding of $23.3M to invest in Canada's foreign intelligence in response to persistent threats
- CSE provides critical foreign intelligence to help inform the Government of Canada’s decision making and protect national security.
- CSE takes seriously its responsibility to protect Canadians from foreign interference and provides foreign intelligence in support of Government of Canada intelligence priorities.
- An increase in funding of $18.8M to enhance the reliability and security of Government of Canada information technology networks
- Funding will enhance and expand the Government of Canada’s existing network.
- It will also improve the robustness and capacity of the Government of Canada’s connections to the Internet and to cloud service providers while providing the security posture (i.e., monitoring and defence capabilities) required to protect Government of Canada data and applications.
- An increase in funding of $1.6M for the national security components of the Retail Payment Activities Act
- To identify security concerns, produce foreign intelligence and advise the government on trends and threats to national security related to Payment Service Providers (PSPs).
Russian Invasion of Ukraine and Russian Cyber Threats to Canada
- In light of Russia’s ongoing, unjustified military actions in Ukraine, CSE and its Canadian Centre for Cyber Security (the Cyber Centre) strongly encourage all Canadian organizations to take immediate action and bolster their online cyber defences.
- While CSE can’t speak to specific operations, I can confirm that we have been tracking cyber threat activity associated with the current invasion. We have the tools in place to monitor, detect, and investigate potential threats, and to take active measures to address them.
- CSE’s valuable cyber threat intelligence has been shared with key partners in Ukraine. We also continue to work with Canadian Armed Forces (CAF) in support of UNIFIER.
- In light of the cyber escalation linked to the conflict in Ukraine, and the historical pattern of cyber attacks on Ukraine having international consequences, the Cyber Centre has issued advice and guidance to bolster the security of Canada’s critical infrastructure.
Disinformation Campaigns
- Since Russia’s brazen and unjustifiable invasion of Ukraine, the CSE has observed numerous Russian-backed disinformation campaigns online designed to support their actions.
- CSE observed coordinated efforts by Russia to create and spread disinformation. One finding falsely claimed that only military targets were being attacked, and that civilian casualties in Ukraine were lower than what was confirmed.
- CSE shared this information as part of the Government of Canada’s efforts to help inform Canadians so they can help stop the spread and protect themselves from disinformation.
- We urge Canadians to familiarize themselves with signs of disinformation at cyber.gc.ca.
Details
Russian-Backed Cyber Threat Activity
- CSE and the Cyber Centre have issued cyber threat bulletins, alerts, and advisories to Canadians and Canadian organizations warning of an increased risk of cyber threat activity due to the Russian invasion of Ukraine.
- These advisories outlined how there is an increased risk to critical infrastructure organizations globally from Russian state-sponsored advanced persistent threat (APT) actors, their proxies, and independent cybercriminal groups.
- These actors and criminal groups may conduct cyber operations, such as deploying ransomware or distributed denial of service (DDoS) attacks, against U.S., Australian, Canadian, New Zealand, or UK organizations to disrupt or harm critical industrial control system (ICS)/operational technology (OT) functions.
- On May 10, 2022, the Government of Canada joined its partners and allies condemning destructive cyber activity by Russia targeting the European telecommunications sector on February 24, 2022.
- On April 20, 2022, Canada also joined our Five Eyes allies in releasing an advisory on Russian state-sponsored and criminal cyber threats to critical infrastructure. In this advisory, the Cyber Centre provided technical details on specific actors and mitigations
Foreign Interference and the Democratic Process
- The Government of Canada takes seriously its responsibility to protect Canadians from foreign interference, regardless of the source.
- In the lead up to and during the 2021 Federal Election, the Communications Security Establishment (CSE), the Canadian Security Intelligence Service (CSIS), Global Affairs Canada (GAC), and the Royal Canadian Mounted Police (RCMP) worked together closely as part of the Security and Intelligence Threats to Elections Task Force (SITE).
- CSE’s Cyber Centre also worked with Elections Canada to help secure election systems and infrastructure.
- Our security and intelligence agencies coordinated integrated government efforts by raising awareness, monitoring, and reporting on threats, and providing advice to protect our democracy.
- SITE Task Force partners will continue to work within their respective mandates to detect and counter possible foreign threats to Canada and its democratic institutions.
- While Canada’s democratic institutions and processes are strong and resilient, CSE will continue to actively work to ensure their continued protection.
Cyber Security and Recent Cyber Incidents
- Protecting Canada’s cyber security is essential for our security, safety, prosperity and competitiveness.
- That is why the federal government has been working to strengthen our national cyber resilience and helping Canadians adopt cyber security best practices.
- Every day, the Communications Security Establishment (CSE) uses its sophisticated cyber capabilities to identify and defend against threats to Canada’s systems and networks.
- CSE’s Canadian Centre for Cyber Security provides Canadians with expert advice and guidance and leads the Government’s response to cyber incidents.
- The Cyber Centre released the National Cyber Threat Assessment, which noted that it is likely that state-sponsored actors are attempting to develop capabilities that could disrupt critical infrastructure, such as the supply of electricity.
- These actors may also continue to target our critical infrastructure to collect information, position for future activity or intimidate.
- We continue to publish advice and guidance to help organizations be less vulnerable and more secure. We work with industry partners, including government and non-government partners, to share threat information and cyber security best practices.
- Cyber security is a whole-of-society concern and the federal government works together with other jurisdictions, small-and-medium enterprises as well as critical infrastructure owners and operators to raise Canada’s cyber security bar.
Huawei and 5G Technology
- The Government of Canada has conducted an extensive examination of 5G wireless technology and the various technical, economic, and national security aspects of 5G implementation.
- Since 2013, the Communications Security Establishment (CSE) has operated the Security Review Program (SRP) that has a proven track-record of protecting Canada’s 3G/4G/LTE networks. This program is part of a broader collaborative approach to strengthen cyber security throughout Canada’s telecommunications sector.
- As announced on May 19, CSE’s SRP will evolve and expand to consider risks from all key suppliers and apply more broadly to help industry improve the cyber security and resilience of Canada’s telecommunications networks.
- My priority is making sure Canada’s telecommunications networks are protected in this next generation of online interconnectivity. That is why CSE is working with partners both domestically and internationally to find ways to increase the security of the telecommunication networks that Canada relies on.
Page details
- Date modified: