SoVote

Decentralized Democracy

Member of the National Security and Intelligence Committee of Parliamentarians

Alex Ruff

  • Member of Parliament
  • Member of the National Security and Intelligence Committee of Parliamentarians
  • Conservative
  • Bruce—Grey—Owen Sound
  • Ontario
  • Voting Attendance: 68%
  • Expenses Last Quarter: $91,173.06

  • Government Page
Context: House Hansard - 172 - Mar/23/23
Mr. Alex Ruff (Bruce—Grey—Owen Sound, CPC)
  • Mar/23/23 4:10:36 p.m.
  • Watch
  • Re: Bill C-26 
Madam Speaker, I am looking for the member's commentary on something I will read to him. It reads: There are several legislative changes that could be implemented to enhance cybersecurity in Canada. Some of these changes include: 1. Strengthening Privacy Laws... 2. Mandatory Reporting of Cybersecurity Incidents... 3. Improving Cybersecurity Standards... 4. Increasing Cybersecurity Funding... 6. Strengthening Cybercrime Laws... Overall, these legislative changes could help strengthen cybersecurity in Canada and better protect individuals and organizations from cyber threats. I am reading this and I could have read more, but this was all generated by ChatGPT. I could have also given some negatives around certain legislation. My point is that I think this emphasizes the importance of the bill and getting it right because we have artificial intelligence getting to the point where it can literally write speeches for us for the House if we want it to. I would like the member's comments on that.
157 words
  • Hear!
  • Rabble!
  • star_border
Context: House Hansard - 164 - Mar/6/23
Mr. Alex Ruff
  • Mar/6/23 5:24:43 p.m.
  • Watch
  • Re: Bill C-26 
Madam Speaker, I referenced a couple important books and a couple references by some of our esteemed national security experts across this country. If people read through that and read some books that are out there, they would see this is a threat that has been building for the better part of a decade or more. The government has known about this since the day it formed government, yet we have seen no action. As mentioned by the CSIS director from 2018, here we are almost five years later, and we are just now seeing this important legislation being delivered.
100 words
  • Hear!
  • Rabble!
  • star_border
Context: House Hansard - 164 - Mar/6/23
Mr. Alex Ruff
  • Mar/6/23 5:22:49 p.m.
  • Watch
  • Re: Bill C-26 
Madam Speaker, I think the public record of the House and this party in the chamber has been clear-cut on the issue of Huawei. We have called for it to be disavowed, taken off devices and not be allowed to be a provider here. That was passed a year and a half ago. Whether someone had private employment prior to them declaring or running in a leadership race is a great question for the individual. Because somebody's past history involved them working for different institutions and companies, yes, we can judge those individuals, but let us talk about the public record here. I would argue that there has been no party in the history of Canada that has stood up more for the defence and sovereignty of this nation than the Conservative Party of Canada.
137 words
  • Hear!
  • Rabble!
  • star_border
Context: House Hansard - 164 - Mar/6/23
Mr. Alex Ruff
  • Mar/6/23 5:20:39 p.m.
  • Watch
  • Re: Bill C-26 
Madam Speaker, I suggest that the member ask the member for Carleton, the Leader of the Opposition, to answer that question because I cannot speak for him other than to state that he has put out a very clear, definitive statement condemning the hashtags that were put on some videos, which he knew nothing about. I will leave my comments at that. The last time I checked, we are debating Bill C-26, legislation that is needed to protect Canadians. It needs to be improved and debated to get it right so we can deal with threats of political interference from foreign states, such as the Communist Chinese government. That is of utmost importance to Canadians.
116 words
  • Hear!
  • Rabble!
  • star_border
Context: House Hansard - 164 - Mar/6/23
Mr. Alex Ruff (Bruce—Grey—Owen Sound, CPC)
  • Mar/6/23 5:10:37 p.m.
  • Watch
  • Re: Bill C-26 
Madam Speaker, I will take maybe a different tack today to contribute to this debate on cybersecurity. I am going to tell a story about Tom and how he has been impacted by technological changes over the last couple of decades. Before I tell Tom's story, I have to share Emily's story with technology and why this legislation and changes to cybersecurity in Canada are so important and so needed. Before I get into that, I think it is important to first lay out in simple terms what this bill is about from my current understanding. There are really two parts to the bill. The first part is about amending the Telecommunications Act to address and fix the security needed for our Canadian telecommunications system. The bill would do this by addressing it through two means. First, it would “direct telecommunications service providers to do anything, or refrain from doing anything, that is necessary to secure the Canadian telecommunications system.” As well, it would establish some monetary penalties tied to those changes. The second part of the bill is all tied to the critical cyber systems protection act. It would provide the framework for the protection of our critical cyber systems, which are vital to national security and public safety. It would do that through five different aspects. First, it would authorize the government to designate those services that are vital to Canadians, those critical sorts of services, what they are and what systems are tied to them. Second, it would authorize the government to establish who is responsible for maintaining those systems. Third, it has how these cybersecurity incidents would be reported and how Canadians and institutions comply with those changes. Fourth, it lays out how information would be shared and, arguably, needs to be protected. Finally, it gives the “so what” of the enforcement and the consequences for non-compliance with the legislation. In reality, this bill is quite lengthy and very technical, so I am going to focus most of my speech around two important aspects of the bill. The first aspect is the threats to cybersecurity. The second is information sharing and the need to protect Canadians' privacy rights while highlighting the important need for transparency. How would the government ensure the accountability of any institution affected by this bill, particularly the government itself, with the additional powers this legislation would grant it? Let us get back to Emily. She is a senior citizen and a retired teacher. She uses a mix of online banking and billing, although she still prefers to handle the majority of her financial transactions right at the bank. She has a fledging social media presence mainly to stay in contact with her grandchildren and friends. She even has a TikTok account at her grandchildren's urging. We will see if she is going to change her mind and delete that sooner than later. Being online and connected is essential to all Canadians now, more than ever, as a lot of Canadians rely on the Internet for their daily lives. It is about more than just conducting business and paying bills. As I have mentioned, we have seen an increased dependency on the Internet, especially for government services. In the last few years, under the Liberal government, it continues to shift more and more government services online, while unfortunately decreasing service delivery for those without access to the Internet at the same time. I will not go into detail on all the shortfalls I see with the current approach, considering that a large portion of rural Canada still do not have access to high-speed or dependable Internet. What threats does Emily face? She complains about getting emails and phone calls from people alleging to be affiliated with her bank or service providers. She wonders about the advertising that shows up on her social media feeds that align with something she only mentioned in an email to a friend. How is all of this happening? To quote the director of CSIS from December 4, 2018, over four years ago, during a speech that he gave to Bay Street, which I have extracted from Stephanie Carvin's Stand on Guard, Mr. Vigneault stated that the greatest threat to our prosperity and national interest is “foreign influence and espionage.” While terrorism remains the number one threat to public safety, “other national security threats—such as foreign interference, cyber threats, and espionage—pose greater strategic challenges”. In her book, Professor Carvin clearly lays out the risks associated with cyber-attacks, whether malware, ransomware, a targeting of critical infrastructure, denials of services or others. She talks about cyberterrorism, cyber-espionage and cybercrime, so how do we deal with this? We deal with this not only through this legislation, but also, mainly for some of the challenges we have, as my colleague from Selkirk—Interlake—Eastman talked about in much greater detail earlier today in his speech, our Canadian Armed Forces, the Communications Security Establishment and even our federal police services, which have ways to deal with this. My colleague hinted that sometimes the best defence is a good offence. Offensive cyber-operations are really not the bailiwick of this legislation, although I would offer that there is some overlap, as we look at a lot of these threats Canadians and Canadian institutions are facing are financed through cyber-attacks and more here at home. We need to tackle this and get the balance right. The bottom line is Emily and Canadians like her being affected by all of these cyber risks. Professor Carvin pointed out that at least 10 million Canadians had their data compromised in 2017 alone. Unfortunately, this number is likely under-reported, and neither the government nor the private sector fully understand the scale of the problem. To sum up, the threats are huge. Bill C-26 must balance privacy rights while ensuring national security. Increased use of encrypted apps, data being stored in the cloud on servers outside of Canada, IP protection and more factor into the challenges of getting this legislation right. In order to deal with these threats, the legislation would need to enable our security establishments with robust, flexible powers. However, these robust powers must come with clear guidance on how far and when to inform the public. This is essential in rebuilding our trust in our democratic institutions. The Business Council of Canada has already publicly expressed concerns over the current draft of this legislation. It rightly identified that large companies, and also small- and medium-sized enterprises, are concerned that the sheer amount of red tape tied to this bill is extremely high. We need to get the balance right. It is vital, and it is going to require significant expert testimony at committee. Although I would argue the legislation is desperately needed, and I would argue even late in coming, it needs to be done right and cannot be rushed through debate or review at the committee stage. I have some final comments. This legislation is needed to protect Canadians. However, this legislation needs to be reviewed regularly and needs to include safeguards. I know if he gets the chance, the member for Winnipeg North might ask about what amendment we are recommending. There is no annual reporting mechanism in this bill, so the government should have to table an annual report to Parliament outlining the progress on this legislation, and include an updated cyber threat assessment to Canadians and what it has been hearing back from the companies impacted by this legislation. Sean McFate, in this book The New Rules of War: Victory in the Age of Durable Disorder, wrote, “ Secrets and democracy are not compatible.... Democracy thrives in the light of information and transparency.” Finally, I will conclude with Tom's story and how he has been impacted by technology. The bottom line is that he has not been. He does not have a cell phone. He does not use the Internet. He only pays in cash and does not have a credit card. The only way he is currently being impacted is when he shows up to try to get some federal services from the government. He cannot do it because he does not have any of that, and he cannot get anybody to show up in an office to work.
1404 words
  • Hear!
  • Rabble!
  • star_border
Context: House Hansard - 164 - Mar/6/23
Mr. Alex Ruff (Bruce—Grey—Owen Sound, CPC)
  • Mar/6/23 5:09:14 p.m.
  • Watch
  • Re: Bill C-26 
Madam Speaker, I will ask a question I asked earlier of another member. In this member's opinion, what does she view as the greatest threat to Canada's cybersecurity? Is it state actors? Is it cybercrime and cyber-technology? Specifically, what does the member think is the greatest threat that we face as a nation around cybersecurity?
58 words
  • Hear!
  • Rabble!
  • star_border
Context: House Hansard - 164 - Mar/6/23
Mr. Alex Ruff (Bruce—Grey—Owen Sound, CPC)
  • Mar/6/23 4:23:25 p.m.
  • Watch
  • Re: Bill C-26 
Madam Speaker, I will build on that last question a bit because I think the member took it out context, though I may be wrong. The question is around specific cyber-incidents or transgressions that need to be dealt with by the appropriate authorities. The issue is the legislation itself and how the power would be used by our security establishments. One of the criticisms that needs to be fleshed out at committee is how this bill and the legislation get reported back here to the House of Commons and to Canadians. Would the member agree that it would be an important addition or amendment to the legislation to include the requirement for an annual report back to Parliament on how this legislation is progressing and what key changes our national security organizations have made so that Canadians can understand how their lives are being impacted in the cyber-realm?
150 words
  • Hear!
  • Rabble!
  • star_border
Context: House Hansard - 164 - Mar/6/23
Mr. Alex Ruff (Bruce—Grey—Owen Sound, CPC)
  • Mar/6/23 12:55:11 p.m.
  • Watch
  • Re: Bill C-26 
Madam Speaker, I am going to build a little on the last question to the member. I know he sat on the public safety committee for a while. From his viewpoint, what does he think is the greatest cyber-threat to Canadians? I would ask him to speak again to why getting this legislation right is so important, but I am interested in his take on what he perceives to be the greatest cyber-threat to Canadians.
77 words
  • Hear!
  • Rabble!
  • star_border
Context: House Hansard - 139 - Dec/1/22
Mr. Alex Ruff (Bruce—Grey—Owen Sound, CPC)
  • Dec/1/22 10:47:59 a.m.
  • Watch
  • Re: Bill C-26 
Mr. Speaker, I just have a couple of quick points. First, I would correct the minister. He referred to it as Bill C-21 a couple of times earlier in his speech. I think that maybe it is on his mind. He knows that there are great changes that need to be made or scrapped out of that bill. As for the references he talked about in his speech, to Huawei and 5G, obviously the government finally decided to ban Huawei from our 5G network just in May. Why did it take the government so long? It was tabled here. A motion was passed in the House a year and a half prior to its making that decision. I am just interested to know why it took the government so long to make such a critical national security decision.
139 words
All Topics
  • Hear!
  • Rabble!
  • star_border