[kictanet] Draft National ICT Policy Discussions Day 7 of 10: How to enhance Cybersecurity
Barrack Otieno
otieno.barrack at gmail.com
Fri Jul 1 01:04:02 EAT 2016
@ Henry,
Many thanks for your timely intervention. Are there aspects in your
review that would impact the current draft policy? If so can you
encourage your team to edit the current policy draft that is uploaded
on the Jadili platform?
Regards
On 6/30/16, henry--- via kictanet <kictanet at lists.kictanet.or.ke> wrote:
> Dear Listers,
>
> I can attest that there is an inter-agency team working on a Computer and
> Cybercrime Bill, 2016. I joined the team after we analysed a draft that was
> developed by the ODPP. While a Zero draft is yet to be finalised. I know
> that we agreed that it will not address itself to hate speech issues. I was
> therefore taken aback by the CS Mucheru position yesterday which seemed to
> make references to the 2014 Draft Bill developed by the ODPP other than the
> one being developed by the Inter-agency committee. See a link to our
> analysis of the old 2014 Bill
> https://www.article19.org/resources.php/resource/37652/en/kenya:-cybercrime-and-computer-related-crimes-bill
>
>
> The inter- agency Bill is looking at five main areas/offences:
> 1. Unauthorised access including unauthorised disclosure of access
> codes/passwords;
> 2. Unauthorised interception and unauthorised interference
> 3. Computer fraud and forgery
> 4. Child pornography
> 5. Cyber-stalking and cyber bullying
>
> I undertake to make available the Draft Bill once a full version is a ready.
>
> Kind regards
>
> Henry
>
>
> From: "Gideon via kictanet" <kictanet at lists.kictanet.or.ke>
> To: henry at article19.org
> Cc: "Gideon" <gideonrop at gmail.com>
> Sent: Thursday, June 30, 2016 1:41:38 PM
> Subject: [kictanet] Draft National ICT Policy Discussions Day 7 of 10: How
> to enhance Cybersecurity
>
> Dear Listers,
>
> Thank you for these moving inputs.
>
> On today's important topic how to enhance Cybersecurity, i will zero in on
> the awareness of the end user. Most of the time the end user may not know
> that they are a subject of an attack and that boils down to the need for
> basic knowledge sharing on what constitutes a cyber attack and how to secure
> your own system from viruses, malware and lately ransomware among other
> attacks.
>
> I believe many users need a constant reminder to update their system
> protections and also know what and where not to click, this could help a
> lot.
>
> On the issue of privacy, i did a paper sometimes back on social media and
> privacy, and from my small survey, i discovered not many users of these
> platforms had read or knew about what their rights as regards privacy,
> personal data among other key implements.
>
> Therefore again I call for constant efforts for awareness.
>
> Kind regards
> Gideon Rop
>
> On Thu, Jun 30, 2016 at 1:07 PM, < kictanet-request at lists.kictanet.or.ke >
> wrote:
>
>
> Send kictanet mailing list submissions to
> kictanet at lists.kictanet.or.ke
>
> To subscribe or unsubscribe via the World Wide Web, visit
> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
> or, via email, send a message with subject or body 'help' to
> kictanet-request at lists.kictanet.or.ke
>
> You can reach the person managing the list at
> kictanet-owner at lists.kictanet.or.ke
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of kictanet digest..."
>
>
> Today's Topics:
>
> 1. Re: Draft National ICT Policy Discussions Day 7 of 10: How to
> enhance Cybersecurity (Sam Oduor)
> 2. Re: Draft National ICT Policy Discussions Day 7 of 10: How to
> enhance Cybersecurity (Barrack Otieno)
> 3. Re: Draft National ICT Policy Discussions Day 7 of 10: How to
> enhance Cybersecurity (Ali Hussein)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Thu, 30 Jun 2016 12:41:32 +0300
> From: Sam Oduor < sam.oduor at gmail.com >
> To: KICTAnet ICT Policy Discussions < kictanet at lists.kictanet.or.ke >
> Subject: Re: [kictanet] Draft National ICT Policy Discussions Day 7 of
> 10: How to enhance Cybersecurity
> Message-ID:
> <CAFwHH1YBYJwYQyYtCihg= UdjzPuQduXgeRTpnAbQy8CdTDoyUQ at mail.gmail.com >
> Content-Type: text/plain; charset="utf-8"
>
> Hi Barrack
>
> A great comment has been posted on the Jadii Platform
>
> June Tessy - a day ago Do we really need another 'specialized' agency yet
> there are already existing units in Government and Regulators that are
> mandated to deal with these like the National Intelligence Service, ICTA,
> CA Perhaps building onto the already existing units in terms of resources
> and capacity may be more sustainable
>
>
> On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet <
> kictanet at lists.kictanet.or.ke > wrote:
>
>> Listers,
>>
>> Many thanks to those who contribued to day 6 discussions. The thread
>> is still open, we also encourage listers to edit the policy directly
>> on the Jadili platform
>> ( http://jadili.ictpolicy.org/docs/kenya-ict-policy ).
>>
>> Today we focus on the following areas:
>>
>>
>> *Online Citizen Safety,
>> *Child Protection
>> *Privacy issues
>> *Security business transactions (Info-Security)
>> *Security & Reliability of Critical ICT infrastructure
>>
>> The Background:
>>
>> The more we automate and rely on digital services, the more vulnerable
>> we become as a society to cybercrime and other threats facing the
>> digital society.
>>
>> The regulator has a Computer Emergency Response Team (CERT), the
>> industry (TESPOK) also has a CERT, the Department of Criminal
>> Investigation & National Intelligence also have CERT. What is not
>> clear is whether there is a framework to have these teams working
>> together and their capacity to counter a full-blown cyber attack
>> against our digital national assets.
>>
>> Additionally, the tension between citizen privacy and national
>> security, citizen privacy and business (profit) concerns remain
>> perhaps due to lack of Data Protection, eTransaction and other laws.
>> Finally, special protection for vulnerable groups (children) going
>> online is non-existent.
>>
>> What needs to be done around these issues?
>>
>> Kindly submit your views.
>>
>> Best Regards
>>
>> --
>> Barrack O. Otieno
>> +254721325277
>> +254733206359
>> Skype: barrack.otieno
>> PGP ID: 0x2611D86A
>>
>> _______________________________________________
>> kictanet mailing list
>> kictanet at lists.kictanet.or.ke
>> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>>
>> Unsubscribe or change your options at
>> https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
>>
>>
>> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
>> for people and institutions interested and involved in ICT policy and
>> regulation. The network aims to act as a catalyst for reform in the ICT
>> sector in support of the national aim of ICT enabled growth and
>> development.
>>
>> KICTANetiquette : Adhere to the same standards of acceptable behaviors
>> online that you follow in real life: respect people's times and bandwidth,
>>
>> share knowledge, don't flame or abuse or personalize, respect privacy, do
>>
>> not spam, do not market your wares or qualifications.
>>
>
>
>
> --
> Samson Oduor
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <
> https://lists.kictanet.or.ke/pipermail/kictanet/attachments/20160630/7ab9d756/attachment-0001.html
>>
>
> ------------------------------
>
> Message: 2
> Date: Thu, 30 Jun 2016 12:52:48 +0300
> From: Barrack Otieno < otieno.barrack at gmail.com >
> To: Sam Oduor < sam.oduor at gmail.com >
> Cc: KICTAnet ICT Policy Discussions < kictanet at lists.kictanet.or.ke >
> Subject: Re: [kictanet] Draft National ICT Policy Discussions Day 7 of
> 10: How to enhance Cybersecurity
> Message-ID:
> <CAKX6dsG6KXHwj5Km37NCJJv= u32SmwyCiSzuZ8eSmmTov_2CZQ at mail.gmail.com >
> Content-Type: text/plain; charset=UTF-8
>
> Great thanks Sam,
>
> We will collate all the comments and forwad them to the Ministry.
>
> Thank you
>
> Best Regards
>
> On 6/30/16, Sam Oduor < sam.oduor at gmail.com > wrote:
>> Hi Barrack
>>
>> A great comment has been posted on the Jadii Platform
>>
>> June Tessy - a day ago Do we really need another 'specialized' agency yet
>>
>> there are already existing units in Government and Regulators that are
>> mandated to deal with these like the National Intelligence Service, ICTA,
>>
>> CA Perhaps building onto the already existing units in terms of resources
>>
>> and capacity may be more sustainable
>>
>>
>> On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet <
>> kictanet at lists.kictanet.or.ke > wrote:
>>
>>> Listers,
>>>
>>> Many thanks to those who contribued to day 6 discussions. The thread
>>> is still open, we also encourage listers to edit the policy directly
>>> on the Jadili platform
>>> ( http://jadili.ictpolicy.org/docs/kenya-ict-policy ).
>>>
>>> Today we focus on the following areas:
>>>
>>>
>>> *Online Citizen Safety,
>>> *Child Protection
>>> *Privacy issues
>>> *Security business transactions (Info-Security)
>>> *Security & Reliability of Critical ICT infrastructure
>>>
>>> The Background:
>>>
>>> The more we automate and rely on digital services, the more vulnerable
>>> we become as a society to cybercrime and other threats facing the
>>> digital society.
>>>
>>> The regulator has a Computer Emergency Response Team (CERT), the
>>> industry (TESPOK) also has a CERT, the Department of Criminal
>>> Investigation & National Intelligence also have CERT. What is not
>>> clear is whether there is a framework to have these teams working
>>> together and their capacity to counter a full-blown cyber attack
>>> against our digital national assets.
>>>
>>> Additionally, the tension between citizen privacy and national
>>> security, citizen privacy and business (profit) concerns remain
>>> perhaps due to lack of Data Protection, eTransaction and other laws.
>>> Finally, special protection for vulnerable groups (children) going
>>> online is non-existent.
>>>
>>> What needs to be done around these issues?
>>>
>>> Kindly submit your views.
>>>
>>> Best Regards
>>>
>>> --
>>> Barrack O. Otieno
>>> +254721325277
>>> +254733206359
>>> Skype: barrack.otieno
>>> PGP ID: 0x2611D86A
>>>
>>> _______________________________________________
>>> kictanet mailing list
>>> kictanet at lists.kictanet.or.ke
>>> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>>>
>>> Unsubscribe or change your options at
>>> https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
>>>
>>>
>>> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
>>> for people and institutions interested and involved in ICT policy and
>>> regulation. The network aims to act as a catalyst for reform in the ICT
>>> sector in support of the national aim of ICT enabled growth and
>>> development.
>>>
>>> KICTANetiquette : Adhere to the same standards of acceptable behaviors
>>> online that you follow in real life: respect people's times and
>>> bandwidth,
>>> share knowledge, don't flame or abuse or personalize, respect privacy, do
>>>
>>> not spam, do not market your wares or qualifications.
>>>
>>
>>
>>
>> --
>> Samson Oduor
>>
>
>
> --
> Barrack O. Otieno
> +254721325277
> +254733206359
> Skype: barrack.otieno
> PGP ID: 0x2611D86A
>
>
>
> ------------------------------
>
> Message: 3
> Date: Thu, 30 Jun 2016 13:03:45 +0300
> From: Ali Hussein < ali at hussein.me.ke >
> To: KICTAnet ICT Policy Discussions < kictanet at lists.kictanet.or.ke >
> Subject: Re: [kictanet] Draft National ICT Policy Discussions Day 7 of
> 10: How to enhance Cybersecurity
> Message-ID: < EA30E4BA-9121-4085-84C5-61C532BA527A at hussein.me.ke >
> Content-Type: text/plain; charset="utf-8"
>
> All
>
> In relation to this, I discovered today that a lot of the privacy issues are
> allegedly being violated by a certain global brand.
>
> Google, could have a record of everything you have said around it for years,
> and you can listen to it yourself.
>
> The company quietly records many of the conversations that people have
> around its products.
>
> The feature works as a way of letting people search with their voice, and
> storing those recordings presumably lets Google improve its language
> recognition tools as well as the results that it gives to people.
>
> Read on:-
>
> http://www.independent.co.uk/life-style/gadgets-and-tech/news/google-voice-search-records-and-stores-conversation-people-have-around-their-phones-but-files-can-be-a7059376.html
>
>
> In relation to this discussion we would love to have a comment from the
> Ministry and Google.
>
> Ali Hussein
> Principal
> Hussein & Associates
> +254 0713 601113 / 0770906375
>
> Twitter: @AliHKassim
> Skype: abu-jomo
> LinkedIn: http://ke.linkedin.com/in/alihkassim
>
>
> "Discovery consists in seeing what everyone else has seen and thinking what
> no one else has thought". ~ Albert Szent-Gy?rgyi
>
> Sent from my iPad
>
>> On 30 Jun 2016, at 12:52 PM, Barrack Otieno via kictanet <
>> kictanet at lists.kictanet.or.ke > wrote:
>>
>> Great thanks Sam,
>>
>> We will collate all the comments and forwad them to the Ministry.
>>
>> Thank you
>>
>> Best Regards
>>
>>> On 6/30/16, Sam Oduor < sam.oduor at gmail.com > wrote:
>>> Hi Barrack
>>>
>>> A great comment has been posted on the Jadii Platform
>>>
>>> June Tessy - a day ago Do we really need another 'specialized' agency yet
>>>
>>> there are already existing units in Government and Regulators that are
>>> mandated to deal with these like the National Intelligence Service, ICTA,
>>>
>>> CA Perhaps building onto the already existing units in terms of resources
>>>
>>> and capacity may be more sustainable
>>>
>>>
>>> On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet <
>>> kictanet at lists.kictanet.or.ke > wrote:
>>>
>>>> Listers,
>>>>
>>>> Many thanks to those who contribued to day 6 discussions. The thread
>>>> is still open, we also encourage listers to edit the policy directly
>>>> on the Jadili platform
>>>> ( http://jadili.ictpolicy.org/docs/kenya-ict-policy ).
>>>>
>>>> Today we focus on the following areas:
>>>>
>>>>
>>>> *Online Citizen Safety,
>>>> *Child Protection
>>>> *Privacy issues
>>>> *Security business transactions (Info-Security)
>>>> *Security & Reliability of Critical ICT infrastructure
>>>>
>>>> The Background:
>>>>
>>>> The more we automate and rely on digital services, the more vulnerable
>>>> we become as a society to cybercrime and other threats facing the
>>>> digital society.
>>>>
>>>> The regulator has a Computer Emergency Response Team (CERT), the
>>>> industry (TESPOK) also has a CERT, the Department of Criminal
>>>> Investigation & National Intelligence also have CERT. What is not
>>>> clear is whether there is a framework to have these teams working
>>>> together and their capacity to counter a full-blown cyber attack
>>>> against our digital national assets.
>>>>
>>>> Additionally, the tension between citizen privacy and national
>>>> security, citizen privacy and business (profit) concerns remain
>>>> perhaps due to lack of Data Protection, eTransaction and other laws.
>>>> Finally, special protection for vulnerable groups (children) going
>>>> online is non-existent.
>>>>
>>>> What needs to be done around these issues?
>>>>
>>>> Kindly submit your views.
>>>>
>>>> Best Regards
>>>>
>>>> --
>>>> Barrack O. Otieno
>>>> +254721325277
>>>> +254733206359
>>>> Skype: barrack.otieno
>>>> PGP ID: 0x2611D86A
>>>>
>>>> _______________________________________________
>>>> kictanet mailing list
>>>> kictanet at lists.kictanet.or.ke
>>>> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>>>>
>>>> Unsubscribe or change your options at
>>>> https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
>>>>
>>>>
>>>> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
>>>>
>>>> for people and institutions interested and involved in ICT policy and
>>>> regulation. The network aims to act as a catalyst for reform in the ICT
>>>>
>>>> sector in support of the national aim of ICT enabled growth and
>>>> development.
>>>>
>>>> KICTANetiquette : Adhere to the same standards of acceptable behaviors
>>>> online that you follow in real life: respect people's times and
>>>> bandwidth,
>>>> share knowledge, don't flame or abuse or personalize, respect privacy,
>>>> do
>>>> not spam, do not market your wares or qualifications.
>>>
>>>
>>>
>>> --
>>> Samson Oduor
>>
>>
>> --
>> Barrack O. Otieno
>> +254721325277
>> +254733206359
>> Skype: barrack.otieno
>> PGP ID: 0x2611D86A
>>
>> _______________________________________________
>> kictanet mailing list
>> kictanet at lists.kictanet.or.ke
>> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>>
>> Unsubscribe or change your options at
>> https://lists.kictanet.or.ke/mailman/options/kictanet/info%40alyhussein.com
>>
>>
>> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
>> for people and institutions interested and involved in ICT policy and
>> regulation. The network aims to act as a catalyst for reform in the ICT
>> sector in support of the national aim of ICT enabled growth and
>> development.
>>
>> KICTANetiquette : Adhere to the same standards of acceptable behaviors
>> online that you follow in real life: respect people's times and bandwidth,
>> share knowledge, don't flame or abuse or personalize, respect privacy, do
>> not spam, do not market your wares or qualifications.
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <
> https://lists.kictanet.or.ke/pipermail/kictanet/attachments/20160630/45070d95/attachment.html
>>
>
> ------------------------------
>
> Subject: Digest Footer
>
> _______________________________________________
> kictanet mailing list
> kictanet at lists.kictanet.or.ke
> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>
>
> ------------------------------
>
> End of kictanet Digest, Vol 109, Issue 129
> ******************************************
>
>
>
>
>
> _______________________________________________
> kictanet mailing list
> kictanet at lists.kictanet.or.ke
> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>
> Unsubscribe or change your options at
> https://lists.kictanet.or.ke/mailman/options/kictanet/henry%40article19.org
>
>
> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for
> people and institutions interested and involved in ICT policy and
> regulation. The network aims to act as a catalyst for reform in the ICT
> sector in support of the national aim of ICT enabled growth and development.
>
>
> KICTANetiquette : Adhere to the same standards of acceptable behaviors
> online that you follow in real life: respect people's times and bandwidth,
> share knowledge, don't flame or abuse or personalize, respect privacy, do
> not spam, do not market your wares or qualifications.
>
--
Barrack O. Otieno
+254721325277
+254733206359
Skype: barrack.otieno
PGP ID: 0x2611D86A
More information about the KICTANet
mailing list