The Canadian Forum for Digital Infrastructure Resilience (CFDIR) is a voluntary, consensus-based and action-oriented public-private collaboration formed to enhance the resilience of the Canadian critical digital infrastructure, resulting in a trusted digital economy for Canadians and a thriving cyber security industry.
Innovation, Science and Economic Development Canada (ISED) established CFDIR in 2020, in part to support Canada’s National Strategy for Critical Infrastructure. Under this strategy, ISED is the lead federal department for the Information and Communication Technology (ICT) critical infrastructure sector. CFDIR brings together key federal partners and industry to improve digital infrastructure resiliency.
Leadership
Government co-chair: Innovation, Science and Economic Development Canada
Industry co-chair: BlackBerry (March 2026 - March 2028)
Objectives
CFDIR will pursue several activities aimed to increase the resiliency of Canada’s digital infrastructure. Some activities include:
- establish a trusted public-private forum for information exchange
- define a collaborative risk management model to raise the bar on cyber security and ICT critical infrastructure resilience across the Canadian economy
- provide a vehicle for industry to inform and advise government
- plan for the deployment of disruptive technologies such as quantum, blockchain and artificial intelligence
- position Canada as a proving ground for cyber-resilient solutions that can be exported globally
- promote and align Canadian positions on cyber security internationally
Membership
CFDIR industry membership is by invitation-only and includes private sector organizations with significant business activities in the ICT sector and considerable impact on the Canadian economy. Member organizations are represented by senior executives, such as Chief Technology Officers (CTO) and Chief Information Security Officers (CISO). As the forum evolves and needs arise, additional stakeholders may be added in the future, either as CFDIR members or as project specific experts.
Government members
Industry members
Working groups
CFDIR working groups implement agreed-upon projects. Please consult the publications section of this website to review deliverables produced through these working groups.
Artificial intelligence (AI) / Machine learning (ML) (AI/ML)
The AI/ML working group performs activities to support Canadians in their awareness of key issues surrounding the use of AI/ML technologies, integrations, systems and solutions. Projects pursued by the working group endeavour to promote safe, responsible and advantageous use of AI/ML, and to bolster economic security and prosperity. These deliverables align with Canadian values such as information privacy, decision-making fairness, transparency and equity. The following five strategic pillars define initiatives undertaken by the AI/ML working group:
- Security and resilience
- Trust and ethics in AI/ML
- Education and awareness
- Innovation and prosperity
- Environment and sustainability
Cloud resilience (CR)
Cloud service providers (CSPs) are increasingly replacing on-premise environments in organizations. This migration to new computing environments requires changes in security and privacy assurances. While international standards bodies are evolving in this respect, additional guidance would benefit Canadian organizations’ understanding of how to secure services now accessible in the cloud. Indeed, CR is not just about avoiding downtime, but also about ensuring performance, security, and scalability of cloud services.
Internet resilience (IR)
Internet resilience is the ability of the Internet to withstand and recover from various types of disruptions, such as natural disasters or cyber attacks. This includes the ability of Internet infrastructure, such as networks and servers, to remain functional during and after a disruption. Individuals’ and organizations’ ability to stay connected and continue accessing online services and information is another aspect of IR. IR is an important factor in maintaining the reliability and stability of the Internet, as well as ensuring that it continues to be a valuable tool for communication, commerce, and information sharing.
Quantum readiness (QR)
The QR working group is responsible for creating guidelines and best practices documents, which are updated annually. These documents are important because quantum technologies are poised to play a major role in Canada's future, from its national security to its economic standing. While Canada is among the global leaders in quantum research, it nevertheless faces challenges in the adoption of these technologies as they approach market readiness. According to Canada’s National Quantum Strategy (2022), estimates of the total economic impact of quantum technologies in Canada by 2025, including indirect and induced effects, will be $533 million, with 1,100 jobs and $188.3 million in returns.
The materials created by the QR working group are designed to help critical infrastructure sectors plan and prepare for the transition of digital systems to use standardized quantum-safe cryptographic technologies and solutions in order to protect the confidentiality and integrity of their data and systems. Collaborative work through bodies such as the CFDIR will be critical in the years ahead to identify what needs to be done and when in order to get ready for a post-quantum world.
Rapid response (RR)
Rapid response (RR) is an ad hoc working group that has been leveraged to share information following critical cyber incidences such as Log4j and the SolarWinds hack. Should the need arise to communicate and mount a response from the Information and Communication Technologies (ICT) community with the Government of Canada or vice versa, the RR working group can be mobilized quickly.
Supply chain assurance (SCA)
Supply chain assurance (SCA) is a key focus area for the Government of Canada and governments around the world for fostering a secure, resilient digital supply chain. Utilizing the scale and resources of third-party suppliers and services, integrated across both hardware and software development lifecycles, Information and Communication Technologies (ICT) organizations can maximize efficiency and productivity to deliver critical technology capabilities. ICT providers are now responsible not only for the security of their own products and services, but must also have confidence in the security and resilience of their entire supplier network, including their suppliers’ suppliers.
Publications
Some of the information on this Web page has been provided by external sources. The Government of Canada is not responsible for the accuracy, reliability or currency of the information supplied by external sources. Users wishing to rely upon this information should consult directly with the source of the information. Content provided by external sources is not subject to official languages, privacy and accessibility requirements.
- Guidelines for Domain Name System (DNS) Resilience in Canadian Organisations Version 1.0
- Guidelines for Evaluating Internet Access Resilience in Canada v.01
- How to Get Started with Quantum Computing v.01
- Improving the Reliability and Resilience of Canada’s Digital Infrastructure
- Quantum-Readiness Best Practices v.04
- Recommendations to Improve the Resilience of Canada’s Digital Supply Chain v.01
- Roadmap to Establish an Effective Digital Supply Chain Coordination Group v.01
- Shared Responsibility in the Cloud For Small and Medium-Sized Enterprises v.01
- The Practical Cloud Resilience Guide for Canadian Small to Medium-Sized Enterprises v.01
- Cloud Resilience Lexicon
- Multi-Cloud Adoption
- Operationalizing The Gen-Ai Voluntary Code Of Conduct For Canadian Critical Infrastructure Entities v.01