Canada Wants To Keep Federal Data Within National Borders

An anonymous reader quotes a report from The Stack: Canada has released its latest federal cloud adoption strategy, now available for public comment, which includes policy concerning the storing of sensitive government information on Canadian citizens within national borders. The newly-published [Government of Canada Cloud Adoption Strategy] requires that only data which the government has categorized as "unclassified," or harmless to national and personal security, will be allowed outside of the country. This information will still be subject to strict encryption rules. The new strategy, which has been in development over the last year, stipulates that all personal data stored by the government on Canadian citizens, such as social insurance numbers and critical federal information, must be stored in Canada-based data centers in order to retain "sovereign control."

canada/china

[turkeydance]

sovereign control served here

Seems logical

[fustakrakich]

Is somebody trying to make an argument against the idea?

Re:Seems logical

[Noah+Haders]

I think it is a good start, but you also need to be careful that your data doesn't pass through outside networks before getting to your home. For example, when I get a page from slashdot, it may travel around the world and back again to get into my computer. we need ways to keep control of which paths the datas take.

Re:Seems logical

[fustakrakich]

That might be a bit more difficult, but maybe using traceroute can keep it on a domestic path.

Re:Seems logical

Don't most countries have this policy? Why are we making news for following the same standard everyone else does

Re:Seems logical

[fustakrakich]

I don't know the intention behind the cheap shot, but *He who shall not be named* has no place in this thread :-)

Re:Seems logical

[StillAnonymous]

If TTP passes, you can rest assured that some foreign company will be crying foul and suing in private court because they weren't given a chance at the business due to unfair "protectionist" laws.

Re:Seems logical

[ramriot]

Specifically for Canada this may well be impossible, reason being is that much of the Canadian population lives within 100Km of the US border and much of the fat pipes that take data between Canadian cities go via carriers in the US.

BTW we talking US here as being the key aggressor of sovereign cybercrime.

Re:Seems logical

[NotQuiteReal]

They said nothing about "transport", just "storage".

Nobody would store bytes passing through inter-web pipes for free, right?

Re:Seems logical

[davester666]

yes. literally EVERY cloud service that hosts data outside of Canada want in on the action, but without having to have a datacenter in Canada to store the data.

This policy has basically given in on the subject, now it will be some bureaucrat with no understanding of how information pieces together deciding whether a given bit of data is "unclassified" or not.

Is it really so hard to just say "Fuck you. You need to store all the data within Canada or you can't be a provider for the Canadian gov't."

Re: Seems logical

Yeah, that's true. Storage is the main consideration and risk. While data is in transport it should be encrypted, and it'd be fairly difficult to exploit that. Also, data stored outside of Canada's borders is subject to the whims of the government with jurisdiction over it.

Re:Seems logical

[Lennie]

Employing the correct encryption helps a lot.

Re:Seems logical

[AchilleTalon]

The real problem is storing government and federal data outside the government and federal infrastructure. Why is that? All data should be stored encrypted, even if in a canadian cloud. But I still don't understand why the government need to store it in the cloud and not build its own cloud for this purpose. What are the advantages for the government to store it in the cloud instead of in-house?

Re:Seems logical

[GNU(slash)Nickname]

The real problem is storing government and federal data outside the government and federal infrastructure. Why is that? All data should be stored encrypted, even if in a canadian cloud. But I still don't understand why the government need to store it in the cloud and not build its own cloud for this purpose. What are the advantages for the government to store it in the cloud instead of in-house?

In a word, cost. The government can't compete with the likes of AWS.

Re:Seems logical

[geekmux]

Is somebody trying to make an argument against the idea?

Only every cloud provider in the known universe that likes to replicate your data across at least three continents.

I have to control my data under similar restrictions, so I've had quite a lot of experience hearing "Oh, wow. No, I'm afraid we can't do that."

Re: Seems logical

[Midnight+Thunder]

In many ways what the government is doing here is no different from financial organisations. Due to the regulated nature of these organisations, any cloud service provider must be able to limit where the data is being stored or they won't being selected a vendor.

For example, e-mails exchanged between employees in Switzerland may not be stored outside of the country, even if the company is a multinational and has other e-mail archives.

Re:Seems logical

[cdrudge]

Nobody would store bytes passing through inter-web pipes for free, right?

It cost $1.5b when built, but this place will store your data for no additional costs.

Re:Seems logical

[luis_a_espinal]

I think it is a good start, but you also need to be careful that your data doesn't pass through outside networks before getting to your home. For example, when I get a page from slashdot, it may travel around the world and back again to get into my computer. we need ways to keep control of which paths the datas take.

Without guaranteed air gaps, the required levels confidentiality or access control cannot be achieved by anything present in the OSI/IP model unless we start using VPNs, WS-Security or some other complex mechanism.

That might be the way to go (the only way to go) for the Canadian government if it wants to implement such requirements. Talking about them and making the requirements available to the public is a good start. Better than trying to concoct the requirement in secret and come up with a shitty implementation that leaks like a colander.

Re:Seems logical

[luis_a_espinal]

They said nothing about "transport", just "storage". Nobody would store bytes passing through inter-web pipes for free, right?

If you can "transport" it, you can "store" it. To prevent storage, the Canadian government would have to employ some sort layer 7 end-to-end security.

Re:Seems logical

[Yvan256]

How about creating a new TCP/IP "do not copy" security bit, similar to the evil bit in RFC 3514?

Re: Seems logical

Not if, when. It's already a done deal.

Re:Seems logical

[Noah+Haders]

Will bad actors respect the do not copy bit? Drats! Foiled again!

Re:Seems logical

Cost pressures are real. However the rest of the world doesn't like the Patriot Act and what that implies for privacy and data integrity.

It's perfectly valid for a country or a company to pay a little bit more for a differentiated service that may have better privacy protections, or indeed any other combination of value adds that make the purchaser happy.

And before you snark, I'm quite aware of the Five Eyes, CSIS and all the rest.

Re:Seems logical

[dmt0]

I think it is a good start, but you also need to be careful that your data doesn't pass through outside networks before getting to your home. For example, when I get a page from slashdot, it may travel around the world and back again to get into my computer. we need ways to keep control of which paths the datas take.

There is a tool that allows you to explore the travel paths. And from the stats that the tool has gathered so far it appears that most of the local/domestic Canadian traffic gets routed through a few very specific points in US. See here:
https://www.ixmaps.ca/faq.php

IX maps has been sending request recently through openmedia.ca asking people to download the tool and submit their stats. The tool is here:
https://www.ixmaps.ca/contribu...

Re:Seems logical

[Noah+Haders]

If I were Canada, I would build a huge beautiful data wall to keep this info out of america's prying hands.

Re: Seems logical

[david_thornley]

The person most likely to be the next President is against it in its final form. Nor am I at all sure it would pass a two-thirds vote in the Senate.

Re:Seems logical

[luis_a_espinal]

How about creating a new TCP/IP "do not copy" security bit, similar to the evil bit in RFC 3514?

That's one hell of an Achilles' heel in that it assumes every single hop (intended or otherwise) will obey it. Without dedicated VPNs or air gaps, you cannot prevent copying. So the only alternative is end-to-end Layer 6/7 confidentiality, integrity and non-repudiation (and availability but only if the first three are met.)

yay patriot act

this is actually a requirement in several Provincial Privacy acts. Nova Scotia for example is not allowed to store any personally identifiable information outside of Canada. The feds arnt bound to follow Provincial acts, but its not surprising they would follow what others are doing already.

Its specifically the Patriot act that led to the NS Clause.

Re:yay patriot act

[MightyMartian]

I work for a contractor for a Provincial government, with a significant amount of the money for that contract actually flowing from the Federal government, and the contract language is explicit; no confidential or personal data is to be stored, or even accessed, outside of Canada.

I actually talked to Google about three years ago and asked if they could guarantee the Google Docs (now Google Drive) cloud could be located on Canadian servers, and they said that couldn't and that they had no plans to. It's my understanding that Microsoft, on the other hand, has conceded to this for OneDrive, so I expect that if Google hasn't already moved in that direction, they will soon.

As it is, we're getting requests from a lot of staff for some sort of Cloud solution, as usage scenarios grow beyond VPNs and RDP.

Re:yay patriot act

What gets me wondering is how a cloud provider can assure that. Cloud providers promise the moon and stars, but few actually are up to par when it comes to audits, and even then, it isn't hard to ship data offshore, and use some excuse about how it got there.

Of course, there is the fact that if a cloud provider goes bankrupt, the next physical possessor of the servers can do whatever the hell they want with the data stored on them. They could tell a bank to pay up, or else all the records stored will be put on a torrent site for everyone to download, or a business with other trade secrets, that they have to pony up some huge amount, or their competition will get an Amazon Snowball delivered with a few terabytes of firmware source code.

As of now, I do use cloud storage, but it gets encrypted on my end, so if it winds up divulged, the data is still protected.

Re:yay patriot act

What gets me wondering is how a cloud provider can assure that.

The rule of thumb is to replace "cloud" with "a computer somewhere".

Just add a list of countries the data can be stored in for each account and use this when you determine where the data goes.
Can bugs occur? Sure, but that haven't stopped a government contractor from assuring things before. Can "bugs" be bought by a foreign nation? Sure, but the same applies there.
The most common solution will probably be to just add the country settings to the the configuration page with the intention to fix the actual storage filter later. It's just that it isn't that prioritized right now.

Re:yay patriot act

[swb]

"Couldn't" probably means "don't want to". It seems hard to fathom that Google doesn't have some kind of regional controls in their system that can pin or exclude data or processes to specific geographic regions (transnational) or national regions. It seems like a basic management function for such a large clustered compute environment.

Amazon *sells* regional availability zones as a feature, although I don't know to what extent this creates guarantees of regional isolation or anchoring of data.

My guess is the doesn't want to part comes from not wanting to be limited by national laws or get hamstrung by lots of demands for regional isolation or exclusion and having those demands warp infrastructure or analytics. Without allowing regional constraints by customers, they can focus on performance and reliability.

Re:yay patriot act

[waterford0069]

Just try explaining that to a U.S. company. Anonymized conversation:

Me - "How do I do [X] with our data?"
U.S. - "I can do that for you, just send me a copy of the database."
Me - "No, I can't ship our data to you. It's full of citizen's personal information."
U.S. - "Oh, well we can sign an N.D.A."
Me - "No, that won't work. The USA PATRIOT act allows the US government to compel you to give them that information. Our own privacy legislation prevents me from sharing that personal information with persons who can't or won't keep it private. When you combine the two, the only way for us both to comply with our respective laws if for me not to give it to you."
U.S. - "Oh, we've never had them come to us looking for that kind of information. And our lawyers..."
Me - "Doesn't matter, I still can't ship you the data"
U.S. - "Boy, you Canadian's sure have some funny laws"
Me - "Ummm.. yah - so anyways, how do I do [X]?"

I'm not evaluating whether the USA PATRIOT act is in general a good thing or a bad thing. But it is a hindrance on cross border commerce involving processing of personal data.

Good to see they've learned their lesson

[BarbaraHudson]

Before the census was cancelled, the contract was given to Lockheed.

During the 2011 census, for instance, 89-year-old Ontario resident Audrey Tobias said she would not fill out the questionnaire because an information technology contract linked to it had been awarded to an American company, Lockheed Martin. Tobias was charged with violating the Statistics Act, but eventually acquitted.

Now that it's back, time to make sure that your data stays your data.

Re:Good to see they've learned their lesson

[MightyMartian]

Not filling in your census has always come with penalties. It's nothing new.

Re:Good to see they've learned their lesson

[BarbaraHudson]

There's no reason not to have a statistics act, same as there's no reason not to have a central registry for births and deaths, or one for drivers and automobiles.

Canadians are the freest people in the Americas, so bite me. :-) And we're not to shabby compared to the rest of the world either. Try not to be so obviously jealous next time.

Re:Good to see they've learned their lesson

>Canadians are the freest people in the Americas, so bite me

Really? So I can write a website denying the holocaust?

Not that I believe in such claptrap, but if I want to write fiction and put it up on a website with my own money, I'm free to do so, yes?

Re:Good to see they've learned their lesson

[BarbaraHudson]

No more than you're free to publish any other hate literature. We like our ban on hate literature - we're free to get rid of it, but we don't.

Now, you can deny the holocaust in private all you want, just as you can possess drawings you made of child pornography all you want - you just can't show them to anyone without violating the law (yes, a BC court has held on appeal that kiddie porn drawings made by an individual solely for their own gratification are allowed under those restrictions).

As long as it doesn't impinge on anyone else and isn't inflicting harm, we really don't give a shit. Hate speech inflicts harm. So does kiddie porn when distributed.

From the summary...

Sounds like an excellent idea for the Canadian people. Are corporations "people" in Canada?

Re: From the summary...

[Zanth_]

Yes :(

Re:From the summary...

[theshowmecanuck]

Yes, but they aren't allowed to contribute to election campaigns or political parties; only people are. Trade unions are also not allowed to contribute to election campaigns or political parties.

Re:From the summary...

[theshowmecanuck]

Ugh... let me clarify. The are legal entities/persons separate from the people who run them and/or the shareholders. But in terms of something like the Citizens United case, no they are not people.

Start with the census

Now that the government is willing to jail you if you're not willing to fill out the census, how about we start with that first? It was busy feeding the US war machine back when we had the freedom to refuse. How much you want to bet it still does?

Re:Start with the census

[BarbaraHudson]

The government was also able to jail you for refusing to fill in previous long-form census. I refused in writing in both 2006 and 2011, on the grounds that in 2006 some of the questions were inappropriate, and in 2011 because some of the questions required information on your parent's ethnicity, which if they want it, they can ask them directly. Long distance charges will definitely apply since they were long dead.

Threats disappeared after I told them that the census taker had violated the census act by having one of her children along when trying to con me into filling it in. And keeping info stored on an insecure laptop. I also told them that I could prove that the "92 year non-disclosure policy" was a total lie, that researchers are given access to the raw data after a mere 7 years, so please take me to court.

Re: Start with the census

I didn't fill out the papers for the 2010 census. I fill out enough paperwork. They sent an army of people to my house, repeatedly. Hell I had cars driving by and checking to see if I was home hourly for weeks on end... Guys peeking in my windows. It's fucking ridiculous. And for what. to see how many Asians are in my house. That's money well spent. I never got threatened. They eventually interrogated all my neighbors and were satisfied with whatever they got out of the neighbors.

Re: Start with the census

[MightyMartian]

There are treatments for your condition.

Re:Start with the census

I've never had the long form census, and asking me to fill it out with regards to my parent's ethnicity would be damaging to the data I assume they're trying to collect (I'm adopted). With the way Ontario used to treat adoption records it used to be basically illegal for me to even found out the birth parent's name, never mind even guess their ethnicity (My friends, after decades, still can't put a finger on what my ethnicity would be, other than "white, but not super white").

I suppose since all that stuff is sealed, I can legally answer that I'm not adopted (there's no way to legally prove I would know) and then pick at random for my parent's ethnicities. In fact, I might just do that since they'll put me in jail for not answering. I can pretty much fill the section regarding parents out any way I like, I suppose!

If you want good data for the census, don't threaten to end my life for it. We figured out that putting someone in jail for not admitting to a crime doesn't work. Why aren't we applying the same logic here?

Oh, right, you need my bullshit random answers for science. I hope the random shit I pick is worth the unethical collection methods you're using to get it.

FWIW, I do fill out the short form honestly (apart from the phone number and email portions), because, frankly, there's nothing in there that the government couldn't just figure out for themselves by asking Revenue Canada. While I haven't had the long form census, I've seen enough of it to realize there's no damn way to prove any of it so I'll be damned if I waste any more time than what's necessary get that gun to stop pointing at my head.

Re:Start with the census

[tlhIngan]

The government was also able to jail you for refusing to fill in previous long-form census. I refused in writing in both 2006 and 2011, on the grounds that in 2006 some of the questions were inappropriate, and in 2011 because some of the questions required information on your parent's ethnicity, which if they want it, they can ask them directly. Long distance charges will definitely apply since they were long dead.

Threats disappeared after I told them that the census taker had violated the census act by having one of her children along when trying to con me into filling it in. And keeping info stored on an insecure laptop. I also told them that I could prove that the "92 year non-disclosure policy" was a total lie, that researchers are given access to the raw data after a mere 7 years, so please take me to court.

Yes, they are able to jail you. But - over the entire history of the law, there were about 11 people actually charged, and they were just fined - $1000 or so.

The census is important. In fact, there was no long form in 2011 because the Conservative government changed it from mandatory to voluntary. This had the unfortunate side effect that there is no usable data to be mined from the 2011 census.

As for the release of raw data - it's collective data, not individual forms. The 92 year rule is for individual forms - so in 92 years, the complete form is released how you filled it in. But the census data is of importance to many people, groups and organizations, and that's aggregated. After 7 years, the aggregated data is available to researchers who want a snapshot of the Canadian population to study what they need to study. But they don't have access to the individual forms you fill out, only the aggregated data. And only subsets of it - what they need for their research. No one other than Statistics Canada can see the full data set, and once the forms are tallied, no one can see the raw forms or individual data either (until 92 years later).

Before it was gutted by the Harper Conservatives, Statistics Canada is/was one of the most premier data collecting and analysis organizations. It's why the chief statistician resigned after elimination of the long form - he knew that the law would render the 2011 data completely worthless. It's partly why we're in the situation we're in with school closures in one city, school overcrowding in others, etc. Because the only usable data dates back to 2006.

Re:Start with the census

[AchilleTalon]

You have it right. The OP is just smoke and drama.

Re:Start with the census

[hodet]

It's good to see a well written and thoughtful response on the requirement for the long form census. The data is instrumental for so many organizations and for governments of all levels (local, provincial, federal) to develop policies and programs to meet the needs of Canadian citizens.

Re: Start with the census

[BarbaraHudson]

It is illegal in some provinces (including Quebec) to ask your neighbors for personal information about you. Even a licensed private investigator can't. Of course, too many people don't know that, so they acquiesce, rather than calling the cops.

Re:Start with the census

[BarbaraHudson]

I saw no reason whatsoever to ask about ANYONE'S ethnicity. Why? Are we going to deprive people of services because of their ethnic background? No? Then why are you asking?

They came up with all sorts of reasons, and I told them flat out it was racist, not needed, and years from now people will be shocked that we ever asked this sort of divisive question.

So the next census, instead of asking for mine, they asked for my parents, which is invasion of their privacy, even if they're dead.

40 years ago the city came around with their census, asking what language I and my then wife spoke at home. "English." So we'll put your children down as english too. "No, you shouldn't be separating people by language, so put them down as french, just to fuck you up." I had enough even back then of separatists trying to classify people based on language. It's neither needed nor right.

Re:Start with the census

[BarbaraHudson]

They would have lost in court. had several legal defenses prepared, one being that it was statistically possible to identify individuals in randomized data by making repeated queries and varying the area covered. Would make it very easy to identify the income of individuals, whether they were adopted, etc. Making the data available for research within 7 years (and sometimes immediately) should be a no-no.

That the census taker violated the census act is just gravy on top. No judge is going to throw someone in jail for refusing to cooperate with a census taker who has demonstrated that they can't take even the most basic precautions.

Re:Start with the census

[BarbaraHudson]

The raw, anonymized data can be de-anonymized, Plenty of ways to do it. And no, not all data was anonymized for research purposes. Just like it wasn't being held in confidence for 92 years. They admitted it.

As for school closures, etc., that needs data at the local level on an annual basis. Not something every 5 years that takes another couple of years to compile and release. Schools can easily figure this out by applications for enrollment the next year. Linger-term trends, they already have year-over-year data, far more granular than what the census could ever provide. They tried to make that argument, it was bogus then, and it's bogus now.

Blame incompetent administrators, people not willing to be flexible with school boundaries, language, etc. The 5-year census is irrelevant.

Re:Start with the census

>The census is important.

Why?

>It's partly why we're in the situation we're in with school closures in one city, school overcrowding in others, etc. Because the only usable data dates back to 2006.

That's what I figured, it's for central planning.

Always nice to know who is willing to put you in prison, or kill you (if you refuse to go to prison) for their beliefs when you don't share the same values as they do.

And they call me crazy. At least I'm not the one marking anyone who doesn't want to participate in my schemes for jail simply because they were born into a "social contract".

Re:Start with the census

[Strider-]

They would have lost in court. had several legal defenses prepared, one being that it was statistically possible to identify individuals in randomized data by making repeated queries and varying the area covered

Clearly you've never actually worked with the census data. As part of one of my university courses, I queried the data set for information related to national origin and religion for a particular neighbourhood. You can not define the area arbitrarily, it's broken up into minimum sized zones to prevent the kinds of attacks that you are talking about.

The folks at Stats Canada are smart. You, clearly, aren't as smart as you think you are.

Re:Start with the census

[BarbaraHudson]

And others have access to the raw data after 7 years. You're not the only person in the world, you know (oops, apparently you didn't).

Re:Start with the census

[CanadianMacFan]

Stats Canada isn't allowed to ask CRA for any information. However if on your tax return you check the appropriate box then you give the CRA permission to share some basic information with Stats Canada. Government departments aren't allowed to share information between themselves. That's why there was a big deal made a few years ago when the government was trying to build a big database with all of our information from as many sources as available.

Does this mean...

[110010001000]

...Canada is buying another computer to go with the one they already have?

Re:Does this mean...

[mykepredko]

Yes, it's 'way too busy.

The squirrels in the current one need some to periodically rest.

Re:Does this mean...

[GNU(slash)Nickname]

The beavers in the current one need some to periodically rest.

FTFY

Re:Does this mean...

[AchilleTalon]

It ain't squirrels, it's beavers. You insensitive clod!

It wasn't already?

So ur saying Canada's data was already going outside? Wow

BC FIPPA

[Rob+Bos]

British Columbia already has this rule; government data (including university data for researchers) must be kept on Canadian servers. There's some wiggle room for opting in to US storage, though.

I think it's important legislation, and it motivates some good duplication of infrastructure within Canada. It makes it harder to abdicate our responsibility to data and makes it just a bit harder for US subpoenas to get a hold of it.

Re:BC FIPPA

IMO and anecdotally, the protection of personal data from American eyes seems to be the overriding goal of most data protection schemes it seems. The US government's cavalier attitude to data is doing their companies and businesses a great disservice.

Normal and sensible.

[Kernel+Kurtz]

Nobody sane the world over wants their data exposed to the USA.

Hard to protect against for sure, but still a worthwhile goal to shoot for.

Re:Normal and sensible.

Actually, the US does a decent job of keeping its data relatively secure, when compared to some other countries...granted, you have to allow that the government will snoop on it all, but that might not be as bad as having another government snoop on all your data.

Of course, there are notable exceptions. I'd trust Google with my data, but not Microsoft.

Re:Normal and sensible.

Actually, the US does a decent job of keeping its data relatively secure

Based on what are you making this claim? Last year they lost control of the records of something like every federal employee

Re:Normal and sensible.

[ceoyoyo]

If you're "the world over" and you're not the USA (i.e. Canada), the USA snooping on your data is "another government."

Re:Normal and sensible.

[Dr.+Evil]

And as a non-US Person, you have no right to privacy.

Re:Normal and sensible.

Of course, China snoops on US data... and they have a policy of their data only stored on domestic servers... go figure.

Re:Normal and sensible.

Actually, the US does a decent job of keeping its data relatively secure

From others yes.
The problem is that the US have a history of letting selected information slip down to commercial interests so that they can get an upper hand when negotiating deals with other governments.
As a result foreign governments needs to make sure that the data never gets to the US.

This is the reason to why Microsoft was so reluctant to allow the government access to data stored in servers in Ireland. If they do then there will be a worldwide shift away from Microsofts services since the US government can't be trusted to not use gathered intel for commercial gain.

Re:Normal and sensible.

[luis_a_espinal]

Actually, the US does a decent job of keeping its data relatively secure, when compared to some other countries...granted, you have to allow that the government will snoop on it all, but that might not be as bad as having another government snoop on all your data.

Of course, there are notable exceptions. I'd trust Google with my data, but not Microsoft.

Hillary's e-mail server (no, I'm not a Trump fan.) Security matters shit if processes aren't followed. God knows what other snafus exists that we do not know of.

Re:Normal and sensible.

I think you got that backwards.

Re:Normal and sensible.

[dmt0]

Not sure if anyone is trying to protect from that at all. Somehow most of local Canadian traffic (including the one between your PC and government sites) goes through US:
https://www.ixmaps.ca/faq.php

Re:Normal and sensible.

[AHuxley]

AC you do recall PRISM https://en.wikipedia.org/wiki/... ?
Thats a lot of US brands, a lot of data flowing to the US gov and mil.

I'd be more worried about outsourcing of helpdesks

Doesn't really help if the servers are in Canada but the people accessing them are in Mumbai does it ?

Re:translation

in order to retain "sovereign control."

Translation: the Canadian government wants to be able to spy on its citizens easily.

Domestically storing the *government* curated data that the *government* already controls doesn't provide much of a spying advantage.

Anyways, Canada doesn't have to spy on its citizens. We let the NSA and the MI5 etc spy on our citizens, just like CSEC and the MI5 etc spy on US citizens in a giant circle jerk including Australia and New Zealand.

Covered World

When the world is covered with clouds, the air gaps are everywhere and nowhere.

It just makes sense

[chromaexcursion]

This is data that should be nationally controlled and protected. Keeping it with borders makes sense.
The US doesn't have a law. It has regulations the amount to the same. So do other countries.
All the big brother conspiracists, please give the rest of us a break.

Not privacy...

[SeattleLawGuy]

This is most likely a question of protectionism (giving contracts to your own data centers) with a privacy smokscreen. It has a coincidental privacy benefit.

Re:Not privacy...

[Mashiki]

No, it's more likely a point on the state of Canada's privacy laws which are incredibly stringent compared to the US and some parts of Europe. See here in Canada, there's sections in the privacy laws(both federal and provincial) that require storage of personally identifiable information to remain within the government agency. It's so stringent that unless there is written permission from you, one government agency can't transfer it to another.

Re: Not privacy...

[Midnight+Thunder]

Not at all, it is about jurisdiction and laws. A server outside of your country is essentially in the jurisdiction of the country it is hosted in and subjected to the laws of the hosting country. If said hosting country decides to confiscate said servers or make a copy of that data, then there is not much the owner of the data can do. Is it really spying when the data was stored outside the originating country?

By having the data limited to being stored in the territory of the country it belongs to, you are avoiding potential diplomatic issues around. it.

Haha

Like Canada really has data worth stealing . Lol

Re: Haha

[corychristison]

You realize we have a population roughly 1/10th of the US, right? That's a fair number of people to datamine.

Re: Haha

[LeadSongDog]

Naive question: how many of those people (in each country) are human, rather than corporate persons?

Re:I'd be more worried about outsourcing of helpde

[GNU(slash)Nickname]

Doesn't really help if the servers are in Canada but the people accessing them are in Mumbai does it ?

The people in Mumbai won't have the security clearance to access the data in the first place.

wrong

1/9th

319 mill/35 miill

there.....

There is a cost to this law: you can't use the bes

I was often hired by provincial governments to develop technology strategies. The problem with laws like this is that it puts Canada at a technical disadvantage because it prevents the same government from purchasing from leading vendors.

  For instance owiing to where they host their data, you cannot use Amazon AWS, and you can't even use most of Microsoft's cloud services yet (they have promised to create a cloud in Toronto and Montreal but haven't turned on the lights yet and even then you pay a premium).

All you can use are some low and Cloud providers or a highly overpriced IBM cloud which costs more than five times more than AWS while providing inferior service.

For cloud based mail you cannot use Google apps, and you can't even use Microsoft Office 365 unless you have at least 60,000 users which is the point after which they will consider hosting your data in Canada as part of your package.

So what you got in the end are self-hosted apps, and private clouds, which in general will never be as well managed or as feature-rich as what you would get from a large cloud provider.

Re:I'd be more worried about outsourcing of helpde

[Lieutenant_Dan]

The people in Mumbai won't have the security clearance to access the data in the first place.

They do tend to have the ability to manage the credentials to grant you access to the applications that consume the data. I've seen this approach leave massive holes in healthcare and outsourcing; where there are stipulations about keeping data in the country.

The GP's point is that physical storage/location is only one piece of the puzzle. Separation of duty as you describe is another, regular audits and monitoring, management of encryption keys, securing the network paths (there a lot of hops that bounce back and forth between the US and Canada), etc

Ha ! Take that

I just typed out my SIN into a file and encrypted it. I stored it on a server in Switzerland. Take that Canada

Utopia?

[dstyle5]

It actually sounds rather Trumpish.

Of course people will make excuses for them because they are a socialist utopia.

Whoa,whoa, lets not get carried away now. Sure, our dear Lords do provide us with subsidized Tim Horton's coffee "drink" and provide us with "health care", but they also force us to watch pugilistic hockey matches, won't let us purchase assault rifles all willy-nilly and force us to watch Celine Dion and Justin Bieber specials on CBC. I would hardly call it a utopia.

Re:Utopia?

I have a decades-long rap sheet because I don't watch the mandatory hockey matches or CBC specials.

Sorry, unclassified should ALSO stay in Canada

What business is it for other countries to have CANADIAN government data????

BETTER USE LINUX THEN

Because even though WINDOWS ANNIVERSARY 10 IS FREE

Microsoft is United States Government Spyware.

prohibited by TPP

[davecb]

Some governments think this kind of security is a bad thing, and and wrote in a clause of the Trans-Pacific Partnership treaty to prohibit it.

TPP “prevents governments in TPP countries from requiring the use of local servers for data storage,” the Canadian government states on its website. This creates a privacy issue, suggested Guy Caron, NDP MP for Rimouski-Neigette-Témiscouata-Les Basques, in the House of Commons May 12.

See also http://www.canadianunderwriter...

And rightfully so

[whitroth]

This is the GOVERNMENT's data. For that reason, for you who's attention span is 15 minutes, a year or two ago, the UK government decided against the cloud, because they could not be assured that UK government data would remain on UK government soil.

You disagree? Really? So it's ok if all of the personal and economic data, including your tax returns, winds up in a data center in China, or Russia, or, for those outside the US, in the US? And you're going to tell me that EVERY SINGLE PERSON who has login or physical access to *all* the servers and their storage has at least some minimal security clearance from your country?

Give me a break.

                      mark

Re:I'd be more worried about outsourcing of helpde

[AHuxley]

Its often smaller sub sets of open or worked on data that gets pooled.
e.g. a cold call pretending to be a gov official with a limited list of personal information.
http://www.smh.com.au/business...

sovereign control?

[DarthVain]

First I've heard of "sovereign control" which sounds like BS to me.

Anyway this issue has been around for a very long time now and isn't really all that complicated. I've looked into a number of cloud based systems as possible solutions for government projects, but they all run into the same problem.

Bottom line is that Canada has quite good Privacy Laws. The Government as custodian of a lot of personal information has a responsibility to ensure that that information is protected.

The issue first came about really as soon as the US passed the Patriot Act. It effectively gives the US government access to information stored on US soil (for a variety of reasons and methods), as it it subject to US law. So I guess you could call that "sovereign control"... but really all that means is that due to US law essentially not being compatible with Canadian law, it is required to keep things on Canadian soil.

There has been various attempts by US companies to get around this, such as providing technology and the means to host it yourself in your own cloud, but really that sort of defeats one of the big reasons for using cloud technology in the first place (i.e. you don't have to bother hosting it yourself or have to have the infrastructure to do it).

Anyway this issue has been around for a long time. The Feds probably just got around to adopting a "strategy" to guide consistent application of existing policy. I suspect probably because you had some rogue project managers using US based cloud services because it was easier and cheaper than going though the proper processes...

about time

Digital Ocean has a Toronto Data center now, so no fucking excuse.

Excellent

[antdah]

Should be the policy of all nations, countries, states and unions.