Public Sector Security Classification Guideline

Click here to download Guideline document (PDF).

Security Classification Objective and Scope

This Public Sector Security Classification Guideline was developed to facilitate the sharing of electronic information between provincial, territorial, municipal, and Government of Canada jurisdictions. Specifically, this guideline serves as a common reference point so that governments wishing to share electronic information may cross reference their own classification rating to this guideline. Once this is done, jurisdictions can then determine if there is a difference in their ratings then they can agree on any necessary changes or adopt a mutually agreeable combination of security measures and processes. This document provides an initial first step in the risk management of the sharing of electronic information.

This document is not a mandatory standard but is rather a guideline approved by the Public Sector CIO Council (PSCIOC) to be applied by governments on a voluntary basis to facilitate the sharing of electronic information between government jurisdictions. This schema is not intended to impinge upon the classification schemas or security approaches of individual governments. However, governments may adopt this particular classification schema if they wish. The establishment of a commonly understood and accepted Public Sector Security Classification Guideline is required to protect sensitive electronic information that participating jurisdictions wish to exchange.

This guideline is primarily intended for information that is not classified in the national interest (i.e. Confidential Secret, Top Secret). Although this schema does not preclude the sharing of federal classified information with provinces and territories, additional requirements to satisfy the Government of Canada security policy apply. These include:

• security screening (clearance),
• need-to-know,
• appropriate security safeguards, and
• an MOU.