By virtue of the constitutional division of powers into federal and provincial jurisdictions, the governance of the provision of cyber security in Canada — and in comparable federal systems with constitutionally distinct levels of government, such as the United States and Australia — raises a host of policy-making challenges.

This special report’s authors ponder the division of authority and responsibility — for cyber, in general, and cyber security, in particular — between public and private actors and different levels of government. Drawing on expertise and insights from business, law, policy and academia, they posit normative models of cyber security governance and gauge the advantages and disadvantages of different approaches. Their contributions illuminate some preliminary lessons for policy makers striving to improve governance outcomes across the cyber domain in Canada.

This special report was produced by CIGI in collaboration with the the Smart Cybersecurity Network (SERENE-RISC), a knowledge mobilization network funded by Canada’s National Centres of Excellence.