This is a single
speech (committee meeting) resource
from the openparliament.ca API. If you’re new here, you might want to look at the documentation. If API and JSON are gibberish to you, you’re better off at our main site.
This is a single
speech (committee meeting) resource
from the openparliament.ca API. If you’re new here, you might want to look at the documentation. If API and JSON are gibberish to you, you’re better off at our main site.
{
"time": "2019-02-04 16:05:00",
"attribution": {
"en": "Mr. Matthew Dub\u00e9 (Beloeil\u2014Chambly, NDP)",
"fr": "M. Matthew Dub\u00e9 (Beloeil\u2014Chambly, NPD)"
},
"content": {
"en": "<p data-HoCid=\"5771317\" data-originallang=\"fr\">Thank you, Mr. Chair.</p>\n<p data-HoCid=\"5771318\" data-originallang=\"en\">I want to ask a question of the folks from HackerOne, since the example I will use is what's going on currently in the U.S.</p>\n<p data-HoCid=\"5771319\" data-originallang=\"en\">The NSA does what they call a vulnerabilities equities process, or VEP. Probably about a year ago I was asked about this by a journalist, because our equivalent body here\u2014not quite equivalent; it's not always exactly analogous\u2014the CSE, doesn't have the same kind of transparent process.</p>\n<p data-HoCid=\"5771320\" data-originallang=\"en\"> I wonder if you could talk about whether that process\u2014in your mind, given the work that you do\u2014has been successful in achieving more transparency when the agencies themselves are discovering vulnerabilities in software that they could potentially use to glean all kinds of information on people?</p>",
"fr": "<p data-HoCid=\"5771317\" data-originallang=\"fr\">Merci, monsieur le pr\u00e9sident.</p>\n<p data-HoCid=\"5771318\" data-originallang=\"en\">J'aimerais poser une question aux repr\u00e9sentants de HackerOne, \u00e9tant donn\u00e9 que l'exemple que j'utiliserai se fonde sur la situation actuelle aux \u00c9tats-Unis.</p>\n<p data-HoCid=\"5771319\" data-originallang=\"en\">La NSA am\u00e9ricaine a mis en oeuvre ce qu'elle appelle un \u00ab vulnerabilities equities process \u00bb, c'est-\u00e0-dire un processus pour d\u00e9terminer si la vuln\u00e9rabilit\u00e9 doit \u00eatre divulgu\u00e9e. Il y a probablement environ un an, un journaliste m'a pos\u00e9 des questions sur ce processus, car notre organisme \u00e9quivalent \u2014 ce n'est pas vraiment un organisme \u00e9quivalent, car ce n'est jamais exactement la m\u00eame chose \u2014, le Centre de la s\u00e9curit\u00e9 des t\u00e9l\u00e9communications, le CST, n'a pas le m\u00eame type de processus transparent.</p>\n<p data-HoCid=\"5771320\" data-originallang=\"en\">J'aimerais que vous nous pr\u00e9cisiez si ce processus \u2014 \u00e0 votre avis, \u00e9tant donn\u00e9 les travaux que vous menez \u2014 a r\u00e9ussi \u00e0 accro\u00eetre la transparence lorsque les organismes eux-m\u00eames d\u00e9couvrent des vuln\u00e9rabilit\u00e9s dans un logiciel qui pourrait potentiellement \u00eatre utilis\u00e9 pour recueillir toutes sortes de renseignements sur les gens. </p>"
},
"url": "/committees/public-safety/42-1/147/matthew-dube-1/",
"politician_url": "/politicians/matthew-dube/",
"politician_membership_url": "/politicians/memberships/4378/",
"procedural": false,
"source_id": "10468594",
"document_url": "/committees/public-safety/42-1/147/",
"related": {
"document_speeches_url": "/speeches/?document=%2Fcommittees%2Fpublic-safety%2F42-1%2F147%2F"
}
}