Call for Participation in the Joint Security Project
Building upon the successful collaborations resulting from a pilot of the Joint Security Project (JSP), this project will continue the development of a community of security specialists to strengthen the overall security of Canada’s universities, colleges, and research institutions.
The JSP will provide eligible participants with a cybersecurity monitoring system to collect networking data. Through collaboration and agreement, participants will define which networking data to share, and jointly shared data will be processed by aggregation and security analysis tools that will provide both institution-level and JSP-wide cybersecurity analytics to all participants.
Institutional security specialists will have access to the aggregation and analysis tools, cybersecurity training with other JSP participants, and collaboration opportunities with peers and cybersecurity experts. Up to $15,000 in participation funding is also available to support each eligible institution that fulfills its participation obligations.
Based on the aggregation and security analysis tools, an output of the JSP will be a jointly developed incident response process to improve the identification of security incidents, gain insight into network security events, and strengthen overall cybersecurity among all JSP participants.
The JSP will also work to collaborate with regional and national security initiatives, including those of Canada’s National Research and Education Network (NREN)i. The NREN is comprised of CANARIE and its twelve provincial and territorial network partners.
JSP Participation Benefits
JSP participants will receive:
- An intrusion detection system (IDS) – CANARIE is able to provide an IDSii to institutions that did not previously receive the device in the JSP Pilot. New participating institutions that wish to use their own IDS may do so, but it is preferred that all project participants use the same IDS for consistency, ease of support, and ease of collaboration.
- Participation funding – Institutions may request $15,000 in funding to support project participation costs. Institutions that do not indicate a need for participation funding will enable more institutions to participate in the JSP, particularly those that may not otherwise have the resources to participate.
- Training and collaboration – All participants will benefit from regular sessions with cybersecurity experts and peers from across the Canadian research and education community.
- Access to the project’s aggregation and analysis tools – Software tools from Canadian university cybersecurity centres will provide both institution-level and JSP-wide cybersecurity analytics to all participants.
Participation is open to Canadian universities, colleges, and research institutions that are connected to Canada’s National Research and Education Network (NREN). Participation is limited to one application per institution or organization. We anticipate that the application would come from the Information Technology or Information Technology Systems or Information Security offices.
- Verify that your institution is connected to the NREN: canarie.ca/is-my-institution-connected
- If you believe that your institution has been omitted from this list in error, please contact firstname.lastname@example.org.
Project Participant Types
1. New JSP Participants
CANARIE invites all Canadian universities, colleges, and research institutions to participate in this national project and to build upon the successful collaboration, experience, and learnings of the JSP Pilot. You will have the following options when completing the Participation Application:
- Intrusion Detection System (IDS)
> Request an IDS from CANARIE – CANARIE can provide you with an Intrusion Detection System (IDS) that will allow you to monitor and detect network security incidents and vulnerabilities.
> Use your own IDS – You are able to participate in the JSP using your own IDS, but it is preferred that all project participants use the provided IDS for consistency, ease of support, and ease of collaboration.
- Participation Funding
> Request Participation Funding – You may request $15,000 in funding support to enable a member of your technical staff to collaborate in the project.
> Opt out of Participation Funding – If your institution has adequate resources to manage your staff’s participation, you may opt out of participation funding. This will enable CANARIE to provide funding to a broader group of institutions that may not otherwise have the resources to participate in the JSP.
2. Returning JSP Pilot Participants
CANARIE invites the 39 institutions that participated in the pilot to build upon their successful work with new JSP participants. The contribution of the experience and expertise of pilot participants is crucial to the success of the project.
Pilot participants are not eligible to receive a second IDS to participate in the JSP; however, participation funding is available as needed. You will have two (2) options when completing your Participation Application:
- Request Participation Funding – You may request $15,000 in funding support to enable a member of your technical staff to collaborate on the project.
- Opt Out of Participation Funding: If your institution has adequate resources to manage your staff’s participation, you may opt out of participation funding. This will enable CANARIE to provide funding to a broader group of institutions that may not otherwise have the resources to participate in the JSP.
JSP participants will:
- Collect network data, either on the Intrusion Detection System (IDS) provided by the JSP or using their own IDS;
- Operate the equipment in accordance with collaboratively determined standards;
- Make a member of their technical staff available to:
> Participate in scheduled videoconferences to develop standards for IDS locations, monitored traffic types, installation and configuration practices, central data collection specifications, data management rules, and alert handling processes
> Attend a system configuration and skill-building workshop, date and location TBD. CANARIE will host the workshop and reimburse the travel expenses for a representative from each participating institution.
> Upload collaboratively agreed upon institutional network security data to the aggregation and analysis tools.
- Allow the sharing of aggregated results and analysis with other Joint Security Project participants.
- Submit a final written report to CANARIE regarding the outcomes and impact of the Joint Security Project, which will end on August 31, 2020.
- Reference CANARIE’s role in the project in all materials produced with respect to the project (including, but not limited to, publicly accessible websites).
- Ensure that all communications related to projects and project funding are made in both official languages for any nation-wide communication aimed at the general public and for any communication aimed at the general public residing in bilingual regions.
Mandatory Criteria for Funded Participants
Participants that apply for participation funding must meet the following mandatory criteria:
- All funded work must be performed in Canada.
- The participant must be a Canadian university, college, corporation or other legally recognized entity that is connected to the National Research and Education Network (NREN).
- The participant must not be a federal government institution (federal department, agency, or Crown Corporation, including their research facilities).
- No more than half of the membership and Board of Directors of the participant can be composed of representatives or agents of the federal government.
Applications to participate in the JSP must be submitted by Monday, September 9, 2019 at 4 pm EDT.
- Preview the questions in the Participation Application
- Before submitting your application, you are encouraged to review its contents.
- Once an application is submitted, you will receive a confirmation email from CANARIE. If you have submitted an application and have not received the confirmation email, please contact email@example.com as soon as possible.
Webinars: CANARIE will host two information webinars with time for questions from attendees. Please register for the webinar session of your choice:
- August 19, 2019 at 1 pm EDT | Webinar recording: https://youtu.be/GOsU7YKsIRo | Presentation
- August 20, 2019 at 1 pm EDT | Register: canarie.ca/jspwebinar2
Application deadline: September 9, 2019 – 4 pm EDT
Funding will be provided to eligible participants in the order that applications are received. Given the limited funding that is available, interested institutions are encouraged to submit their applications as soon as possible.
Announcement of successful participants: September 18, 2019
JSP participation period: September 18, 2019 to August 31, 2020
- If you have other questions about this call or about CANARIE’s Joint Security Project, please contact: firstname.lastname@example.org.
- Common questions and their answers will also be posted to the project’s Frequently Asked Questions page on a regular basis.
- Frequently Asked Questions
- Participant Report Template
- Participation Application | Preview Sample Application