Canadian Government Executive - Volume 27 - Issue 04

GOVERNING DIGITALLY Provinces and municipalities are hardly immune of course. BC’s Whistler and St. John New Brunswick have both faced costly cyber- attacks in recent months, as just two examples, while reports grow of hospitals in Canada and elsewhere quietly paying ransom to hackers in order to restore critical information systems. As with most all as- pects of digital governance in Canada, aside from an informal Council of public sector CIO’’s, a holistic architecture for inter-jurisdictional collaboration remains elusive. Despite evolving actions from many quarters, the Internet is de- signed to be mainly open and interoperable across political borders and commercial structures. For different reasons, governments and companies may try to control small segments of Internet activity (such as India’s censoring of social media platforms or Apple’s app store regulations), but the underlying architecture remains a patchwork of interconnected servers and software systems (and pretty much an on- going nightmare for CIO’s everywhere). Daniel Bell, a reputable Harvard Sociologist, wrote in 1987: ‘The national state has become too small for the big problems of life, and too big for the small problems.’ To say the least, cyberspace amplifies the importance of this prescient quote, giving rise to widening digital vulnerabilities. In response to Covid, the rapid societal acceleration of societal digitization and the emergence of the hybrid workplace only layers additional risks as more of our professional and personal activ- ity shifts online. As the world splinters into a digital cold war between China and the west, and as new technologies such as blockchain further decentralize actions and authority, a certain degree of humility is called for with respect to the actions of any one country or company. Nevertheless, there are three facets of strengthening the governance of cyberspace that must be pursued simultaneously. First, there is now an overarching acceptance of the need for mul- tilateral dialogue and coordinated response. Encouragingly, the UN General Assembly adopted arguably its first-ever meaningful report on cyber-security just this year, prepared by the Open-ended working group on developments in the field of information and telecommuni- cations in the context of international security. The report concludes that ‘there are potentially devastating security, economic, social and humanitarian consequences of malicious ICT activities on critical infrastructure (CI) and critical information infrastructure (CII) sup- porting essential services to the public.’ The next step is to create a formalized program of action enjoining willing member states, to begin in 2022. Secondly, governments must prioritize open-source architectures and open standards across public and private infrastructure, shift- ing away from an excessive reliance on proprietary solutions that heighten dependency on secretive outsourcing. Ironically, as with the Android mobile operating system or Estonia’s releasing of source code for e-voting, the highest degree of privacy and data protection is derived through systemic transparency and collective adaptation rather than insularity. Finally, governments must prioritize digital literacy at home, shift- ing beyond the rhetorical promises of digital rights and cultivating a culture of personal responsibility in the realm of cyberspace. Basic safeguards such as identity authentication and better education and tools for personal threat assessments – as well as sharing potential threats once spotted, can all make a difference. As digitization deep- ens, individual actions and incentives will shape the resilience of cy- berspace – and our collective future. Jeffrey Roy is a professor in the School of Public Administration at Dalhousie University (roy@dal.ca ). July/August 2021 // Canadian Government Executive / 19 In response to Covid, the rapid societal acceleration of societal digitization and the emergence of the hybrid workplace only layers additional risks as more of our professional and personal activity shifts online.