Modernization of RCAF search and rescue helicopters deemed unaffordable '€” project on hold for now

Sur le même sujet

• 

  9 septembre 2019 | Local, C4ISR

  Norad asked Canada to 'identify and mitigate' cyber threats to critical civilian sites

  by Murray Brewster The U.S.-led North American Aerospace Defence Command (Norad) asked the Canadian military to do an inventory of its bases and the surrounding civilian infrastructure, looking for critical systems vulnerable to a cyberattack. The letter to Canada's chief of the defence staff, written by then-Norad commander U.S. Admiral William Gourtney just over three years ago, was obtained by CBC News under access to information legislation. Despite the passage of time, two leading cyber experts said the request highlights an enduring concern of both defence planners and people in high-tech industries. The notion that a cyberattack could shut down civilian infrastructure — such as power grids, water treatment plants or traffic systems — in the vicinity of a military base is nothing new. What is unusual is that Norad sought reassurance, at the highest levels of the military, that Canada was on top of the evolving threat. The Norad commander asked Gen. Jonathan Vance to "identify and mitigate" Infrastructure Control Systems (ICS) vulnerabilities on Canadian military bases, particularly at "installations that are critical for accomplishing Norad missions." The March 24, 2016 letter also urged Canada's top military commander to "advocate developing capabilities to respond to cyber incidents on CAF [infrastructure control systems] and defend CAF [infrastructure control systems] if required." Gourtney's concern was not limited to defence installations; he asked Vance to "work with Public Safety Canada to identify civilian infrastructure that is critical to CAF and Norad missions. This includes developing processes for reporting cyber incidents on the identified civilian infrastructure." Vance responded to Gourtney (who has since retired and was replaced by U.S. Air Force Gen. Terrence O'Shaughnessy) three months later and directed the military to hunt for vulnerabilities. "I share Norad's concerns for the cybersecurity" of critical defence infrastructure, Vance wrote on June 10, 2016, in a letter obtained by CBC News under access to information legislation. He noted that the Canadian government has identified "adversaries" that pose "a significant threat and efforts have been made to identify and develop protective strategies for Canadian critical infrastructure." The Liberal government — through its defence strategy and overhaul of security legislation — tackled some of the concerns raised by Norad. It gave the Communications Security Establishment (CSE) and the military new powers to conduct offensive cyber operations. Perhaps more importantly, it set up the Canadian Centre for Cyber Security for civilian infrastructure, which — according to CSE — aims to "be a place where private and public sectors work side-by-side to solve Canada's most complex cyber issues." David Masson, a cyber expert, said minimizing the vulnerability of civilian, privately operated infrastructure continues to be an extraordinarily complex task. The major vulnerability is in what's known as operational technology systems, the kind of computer-driven tasks in utilities and other infrastructure that open and close valves or perform remote functions. The task of securing them is made extraordinary difficult in part by the wide variety of operating systems out there. "There's lots of them," said Masson, the director of technology at Darktrace, a leading cybersecurity company. "Look at it as 50, 60, 70 different bespoke communications systems. There's no real standardization because they're so old. Many of them were never expected to be connected to the internet." He pointed to the 2015 and 2016 cyberattacks on Ukraine's power grid, which in one instance cut electricity to 225,000 people, as examples of what's possible when hackers go after operational technology systems. It is also the kind of event that Norad is concerned about. "The kinds of equipment and machinery that supports the transport of natural gas or the provision of air conditioned services, or our water supply — all of those are critical to Canadians and our militaries," Lt.-Gen.Christopher Coates, the Canadian deputy commander, said in a recent interview with CBC News. He said Norad is focused on the capabilities that are essential to doing its job of defending North America against attack, and they try to "minimize those vulnerabilities where we can." There is, Coates said, an interesting discussion taking place at many levels of the military about what constitutes critical infrastructure. "You asked if we're satisfied. I get paid to be concerned about the defences and security of our nations. I don't think I should ever be satisfied," he added. 'Inauthentic activity' in Alberta election a possible preview of tactics in the federal campaign, report warns Privacy commissioner launches investigation into licence plate breach With ransomware on the rise, RCMP urging victims to 'be patient with police' Christian Leuprecht, a defence expert at Queen's University in Kingston, Ont., said defining critical infrastructure is a complex and evolving task. He pointed to Russian interference in the 2016 U.S. presidential election; prior to that event, he said, the definition of critical infrastructure was limited to power plants, electricity grids and even the financial system. "A lot of things people are wrestling with the question of what institutions — take, for example, democratic institutions — become critical infrastructure," said Leuprecht. The Ukrainian attacks, in the view of many defence experts, are a blueprint of what the opening shots of a future war would look like. "There's a considerable and growing awareness that our defence and critical infrastructure systems are closely tied together because countries, such as China, preserve cyberattack as a first-strike option," Leuprecht said. Masson said there are ways to limit the vulnerability of operational technology systems. Not connecting them to the internet would be a start, but many companies are choosing not to do that for efficiency reasons. He said they also can be protected with "robust" security systems. https://www.cbc.ca/news/politics/norad-cyber-civilian-1.5273917

• 

  12 mars 2019 | Local, Sécurité

  Port of Montreal busier than ever, creating opportunities for smugglers

  Christopher Reynolds, The Canadian Press On a crisp day in early March, Tony Boemi looks out on the stacked shipping containers that stretch into the horizon of the 26 kilometre-long Port of Montreal. "We've been going up tremendously," the port authority vice-president says. Traffic at Canada's second-largest port rose nine per cent in 2018 to the equivalent of more than 1.6 million 20-foot containers for the fifth straight year of record volumes, prompting concerns the docks will be overloaded by 2022. Vancouver and Halifax, the largest and third-largest ports, respectively, also saw record container traffic last year. "I'd be lying if I said we weren't struggling with managing the sudden surge," Boemi says. Driving the boom is Canadian demand for clothing, appliances and other consumer products made in Asia, as well as a new free trade agreement with Europe. However, the surge in traffic comes with a downside: The additional containers present an opportunity for criminals to capitalize on limited law enforcement resources and hide more contraband among the legitimate goods. Bud Garrick, an investigator with Presidia Security Consulting and former deputy director-general of the RCMP's criminal intelligence service, said imported drugs and exported stolen cars constitute the biggest smuggling problem, with authorities nabbing only a small fraction of the spoils. "Marine ports are an attractive environment for individuals with ill means and mind to smuggle things into Canada," he said. "The amount of cargo -- shipping containers -- that moves in and out of ports is phenomenal...It's a magnitude problem." The criminal allure of ports is simple. Airports are under too much scrutiny, and air freight is costly. Overland smuggling does occur, but on a smaller scale. "Trying to intercept smuggled cargo at a port is expensive and disruptive, and you'll never have enough resources to catch most things through random screening," Peter Hall, an associate professor of urban studies at Simon Fraser University, said in an email. "Mostly 1/8the CBSA 3/8 focus on screening for terrorist and bio-hazards." A 2015 federal auditor general's report found that the Canada Border Services Agency "did not fully have the necessary authorities, information, practices and controls to implement its enforcement priorities and prevent the export of goods that contravene Canada's export laws." Just like legitimate trade, black market port activity works both ways. Incoming ships bring drugs such as cocaine and heroin, while outbound ships contain a growing number of stolen vehicles. "The most prolific is actually in Alberta," said Henry Tso, vice-president of investigative services at the Insurance Bureau of Canada. "A lot of the cars are being shipped from Alberta to various ports in Canada, mainly Vancouver." More than 25,000 vehicles were stolen in Alberta in 2018, part of a 50 per cent increase over the past five years that stems in part from overseas demand for high-end pickup trucks and SUVs. The thefts, which recent cases have linked to criminal organizations in West Africa, northern Europe, the Middle East and China, rely on human as well as technological flaws. "Certain docks, there are some you know are run by organized crime. Even in Quebec, like the Montreal ports, one terminal is clean, the other one is not clean," said Tso. "The major issue is corruption," said Anthony Nicaso, who has authored more than two-dozen books on organized crime. "There is no political will to fight organized crime," he said, "probably because money does not stink, so who cares -- money is money." Back at the Montreal port, Boemi estimates the CBSA thoroughly inspects about three per cent of containers that roll through the port. The CBSA declined to give statistics, but noted that screening devices such as gamma-ray detectors -- which sense radioactive material -- scan each container. "The CBSA requires marine carriers to electronically transmit marine cargo data to the Agency 24 hours prior to the loading of cargo at a foreign port. This requirement allows the CBSA to effectively identify threats to Canada's health, safety and security and take actions prior to cargo and conveyances leaving foreign ports," the CBSA said in an email. A Canadian Senate report from 2006 found that 15 per cent of stevedores and more than two-thirds of checkers who worked at the Montreal port had criminal records, along with more than half of the workers at an outside company contracted to pick up waste and maintain ships at the docks. In an effort to boost security, the Port of Montreal now requires that truckers with Transport Canada security clearance have their fingerprints scanned upon entry. The port and CBSA have signed on for a trial run of blockchain technology that aims to better secure and streamline freight shipping. Jean-Pierre Fortin, president of the Customs and Immigration Union representing some 10,500 CBSA employees, is not satisfied. "With stolen cars, with drugs, with guns, we need to increase our capacity to monitor this properly," he said. https://montreal.ctvnews.ca/port-of-montreal-busier-than-ever-creating-opportunities-for-smugglers-1.4330014

• 

  31 août 2017 | Local, C4ISR

  Press Release - Universal Switching, General Dynamics Canada Support Mercury Global Project

  General Dynamics Canada has selected Universal Switching Corporation to support the Canadian Mercury Global project. The Mercury Global project is the name given to Canada's participation in, and leverage of, the Wideband Global Satellite (WGS) constellation. http://www.satellitetoday.com/telecom/2017/08/31/universal-switching-general-dynamics-canada-support-mercury-global-project/