Summary of 231 - Controlling Authority/Command Authority Key Material Support Plan (KMSP)

Course format


Course description

All CSE-approved COMSEC accounts must ensure that appointed personnel possess the required knowledge to manage the operational use of cryptographic material assigned to a cryptonet. This course familiarizes participants with the roles and responsibilities of the appointed authorities, the families of Accountable COMSEC Material, cryptonet key requirements, and the development of a KMSP. After being walked through the KMSP process step-by-step and given an opportunity to complete a sample KMSP, participants will be fully prepared to effectively administer their account’s KMSP.

Course objectives

The objectives of this course are to ensure that upon successful completion, the participant will be able to:

  • Explain the importance of a KMSP
  • Explain the roles involved in the development of a KMSP
  • Become familiar with cryptographic keys and the networks they protect
  • Define the KMSP development process
  • Describe the KMSP maintenance process
  • Complete a sample KMSP




1 day

Target Audience

Government of Canada (GC) personnel, such as Command or Control Authority, who have been designated to create or update a KMSP.


  • Command or Control Authority must successfully complete the 731 – Controlling Authority/Command Authority online course prior to attending this course, as per ITSD-04A.
  • It is recommended that participants who are not familiar with COMSEC take the 235 – COMSEC in the GC course prior to attending this course.
  • Participants attending this course should have prior knowledge of basic networking fundamentals.

Course outline and module objectives

  • Module 1 – Roles and Responsibilities
    • Describe the roles and responsibilities in relation to cryptonet management
    • Explain the responsibilities of:
      • Departmental COMSEC Authority / Enterprise COMSEC Authority
      • Controlling Authority / Command Authority
      • Product Requester
      • COMSEC Custodian
  • Module 2 – KMSP Description
    • Describe the purpose of a KMSP
    • Describe the approval process of a KMSP
    • Explain the concepts of cryptonets
    • Identify the maintenance requirements of a KMSP
  • Module 3 – Families of Accountable COMSEC Material(ACM)
    • Describe the families of ACM
    • Describe key, key types and methods of key distribution
  • Module 4 – Key Material Required to Support a Cryptonet
    • Describe symmetric and asymmetric key
    • Describe cryptoperiods
    • Understand cryptoperiod extensions
    • Describe emergency supersession plans
  • Module 5 – COMSEC Incidents and Reporting Process
    • Identify COMSEC incidents, their categories and types
    • Describe the COMSEC incident reporting process
    • Recall baseline compliance requirements
  • Module 6 – KMSP Development
    • Develop a KMSP for submission to the DCA for approval

Date modified: