Cyberspace is critical when conducting modern military operations.
Operating within cyberspace includes both opportunities and challenges.
For example, the CAF can gain strategic advantage through digitally enabled communications, intelligence, and weapon systems.
But the use of these technologies can also open us up to vulnerabilities if they are not adequately secured and defended from cyber threats.
Canada’s adversaries are certainly leveraging and developing cyber capabilities in an effort to exploit these vulnerabilities.
Given these realities, the CAF continues to defend its own networks, platforms and information systems against cyber threat actors and impose costs on adversaries through the conduct of full spectrum cyber operations as authorized by the Government of Canada.
We are also providing assistance to allies and partners.
For example, the CAF currently provides cyber defence assistance to Latvia and Ukraine to bolster the ability of both nations to defend against malicious cyber activities.
The work of the CAF is also supported by the Communications Security Establishment, which is Canada’s technical authority for cyber security and provides unique operational capabilities.
CSE, supported by its Canadian Cyber Security Centre, employs sophisticated cyber tools and technical expertise to help identify, prepare for, and defend against cyber threats to the Government of Canada, industry, academia, and Canadians writ large.
In 2019, the CSE Act granted CSE authorities to conduct foreign cyber operations to take online action to disrupt foreign threats to Canada and achieve international affairs, defence, and security objectives.
Canada, in conjunction with our allies and partners, will continue to advance a stable cyberspace built on respect for international law and the norms of responsible state behaviour in cyberspace.
Key Facts
Canadian Armed Forces Cyber Capabilities
The Canadian Armed Forces continues to develop and scale its offensive and defensive cyber operations capabilities in close cooperation with CSE.
This partnership enables cyber operations and provides the Government of Canada flexibility in achieving strategic objectives.
The Canadian Armed Forces holds the responsibility of safeguarding its military networks on a continuous basis and conducts full spectrum cyber operations in support of military operations, including in collaboration with CSE and international partners.
Canada has publicly announced that the CAF conduct cyber operations under Operation REASSURANCE in Latvia and Operation UNIFIER in Ukraine.
Communications Security Establishment
The CSE Act sets out five aspects of CSE’s mandate, including:
Cybersecurity and information assurance;
Foreign intelligence;
Defensive cyber operations;
Active cyber operations; and
Technical and operational assistance.
Details
CAF Cyber Capabilities
DND/CAF’s approach to cyber is shaped by its 2017 defence policy, Strong Secure, Engaged (SSE), which committed the CAF to assuming a more assertive posture in the cyber domain by hardening its defences, and by conducting offensive cyber operations against potential adversaries as part of government-authorized military missions. SSE includes five key initiatives related to DND/CAF’s military cyber capabilities:
Build capability and conduct active cyber operations in support of Government-authorized missions;
Grow and enhance the cyber force by creating a new CAF Cyber Operator occupation to attract Canada’s best and brightest talent;
Use Reservists with specialized skill-sets to fill elements of the CAF cyber force;
Invest in command and control infrastructure, cyber defence, and network situational awareness to enhance the security of DND/CAF’s military networks and equipment; and;
Protect critical military networks and equipment from cyber-attack by establishing a new Cyber Mission Assurance Program that will incorporate cyber security requirements into the procurement process.
The authority for CAF to conduct offensive cyber operations is approved by the Government on a mission-by-mission basis and in accordance with domestic and international law.
In 2022, Canada published its national position on the applicability of international law in cyberspace in an effort to strengthen the understood parameters for responsible State behaviour and help foster a more stable and secure in cyberspace.
At the request of Canada’s Latvian Allies, the CAF deployed a Cyber Task Force to Riga to conduct a bilateral defensive cyber threat hunting operation on Latvian government and non-government critical infrastructure. Cyber security experts from DND/CAF and CSE serve as part of the Task Force in support of these defensive operations in Latvia. These defensive cyber operations in support of our NATO Allies have allowed Canada to reinforce the work of NATO Eastern Flank Allies to defend and deter against Russian aggression in the region.
At the request of the Ukrainian Ministry of Defense, the CAF has been bolstering Ukraine’s cyber defence capabilities since early 2022. This support includes the provision of 24/7 cyber security expertise, cyber threat intelligence, software tools and engineering solutions to the Armed Forces of Ukraine to enable the better defence of its networks and other critical systems against malicious cyber activities.
Canada’s Indo-Pacific Strategy announced a $47.4M investment to fund a cyber component dedicated to strengthening cyber engagement and diplomacy in the region. This notably includes cyber capacity building assistance and strengthening partnerships in defence/cyber interoperability with regional partners.
Cyber Mission Assurance Program
Strong, Secure, Engaged (SSE) directed the creation of the Cyber Mission Assurance Program. It is part of the cyber capability to protect critical military networks and equipment from cyber threats. Platforms like aircraft, ships, and vehicles are becoming increasingly dependent on cyberspace. The Cyber Mission Assurance Program ensures that cyber resilience is a primary consideration when new equipment is procured.
Cyber threats pose unique challenges in projecting and sustaining military power. The changing global environment and the increasing dependence on cyberspace technologies demands a significant change in our culture. The introduction of cyber-resiliency mindset in all our activities is required for the CAF to maintain its competitive advantage. The Cyber Mission Assurance Program focuses on managing the risks associated with cyber threats, to improve resilience, and increase the probability of mission success.
CAF and CSE Cooperation
The CAF and CSE have a long history of partnership in the development of highly technical and specialized capabilities that support CAF operations.
These activities are subject to the rigorous system of internal policies and procedures of both organizations as well as independent oversight and review.
Cooperation between the CAF and CSE ensures the best use of tools and capabilities, reduces unnecessary duplication of efforts, leverages each other’s authorities, and improves the chances of meeting mission objectives.
CSE and its Canadian Centre for Cyber Security
CSE uses its sophisticated cyber and technical expertise to help monitor, detect, and investigate threats against Canada’s information systems and networks, and to take active measures to address them.
CSE may use defensive cyber operations to defend Canada against foreign cyber threats by taking online action. This authority can also be used to defend systems designated by the Minister of National Defence as being of importance to the Government of Canada, such as energy grids, telecommunications networks, healthcare databases, banking systems, and elections infrastructure.
As outlined in section 19 of the CSE Act, the active cyber operations aspect of CSE’s mandate is to carry out activities on or through the global information infrastructure to degrade, disrupt, influence, respond to, or interfere with the capabilities, intentions or activities of a foreign individual, state, organization, or terrorist group as they relate to international affairs, defence, or security.
Recent geopolitical events have elevated the potential risk of cyber threats, as outlined in the 2023-2024 National Cyber Threat Assessment.
CSE continues to publish advice and guidance to help organizations be less vulnerable and more secure. It works with industry partners, including government and non-government partners, to share threat information and cyber security best practices.
Cyber security is a whole-of-society concern, and the federal government works together with other jurisdictions, small-and-medium sized organizations, as well as critical infrastructure network defenders to raise Canada’s cyber security bar.
Privacy Protections and Safeguards
CSE is prohibited by law from directing its cyber or intelligence activities at Canadians or any person in Canada and must not infringe the Canadian Charter of Rights and Freedoms. This prohibition is clearly defined in its legislative powers and extends to its foreign intelligence and cyber operations mandate to ensure that Canadian Charter obligations and the privacy of Canadians are respected and preserved.
Cyber operations conducted under CSE authorities require the Minister of National Defence to issue a Ministerial Authorization, which requires either consultation with the Minister of Foreign Affairs (for defensive cyber operations) or at the request of or with the consent of the Minister of Foreign Affairs (for active cyber operations).
Overall, Canada’s authorities and governance framework to conduct cyber operations is supported by strong independent and parliamentary review processes, as well as internal oversight for operational compliance.