[kictanet] Draft National ICT Policy Discussions Day 7 of 10: How to enhance Cybersecurity

henry at article19.org henry at article19.org
Thu Jun 30 16:13:57 EAT 2016


Dear Listers, 

I can attest that there is an inter-agency team working on a Computer and Cybercrime Bill, 2016. I joined the team after we analysed a draft that was developed by the ODPP. While a Zero draft is yet to be finalised. I know that we agreed that it will not address itself to hate speech issues. I was therefore taken aback by the CS Mucheru position yesterday which seemed to make references to the 2014 Draft Bill developed by the ODPP other than the one being developed by the Inter-agency committee. See a link to our analysis of the old 2014 Bill 
https://www.article19.org/resources.php/resource/37652/en/kenya:-cybercrime-and-computer-related-crimes-bill 

The inter- agency Bill is looking at five main areas/offences: 
1. Unauthorised access including unauthorised disclosure of access codes/passwords; 
2. Unauthorised interception and unauthorised interference 
3. Computer fraud and forgery 
4. Child pornography 
5. Cyber-stalking and cyber bullying 

I undertake to make available the Draft Bill once a full version is a ready. 
Kind regards 

Henry 


From: "Gideon via kictanet" <kictanet at lists.kictanet.or.ke> 
To: henry at article19.org 
Cc: "Gideon" <gideonrop at gmail.com> 
Sent: Thursday, June 30, 2016 1:41:38 PM 
Subject: [kictanet] Draft National ICT Policy Discussions Day 7 of 10: How to enhance Cybersecurity 

Dear Listers, 

Thank you for these moving inputs. 

On today's important topic how to enhance Cybersecurity, i will zero in on the awareness of the end user. Most of the time the end user may not know that they are a subject of an attack and that boils down to the need for basic knowledge sharing on what constitutes a cyber attack and how to secure your own system from viruses, malware and lately ransomware among other attacks. 

I believe many users need a constant reminder to update their system protections and also know what and where not to click, this could help a lot. 

On the issue of privacy, i did a paper sometimes back on social media and privacy, and from my small survey, i discovered not many users of these platforms had read or knew about what their rights as regards privacy, personal data among other key implements. 

Therefore again I call for constant efforts for awareness. 

Kind regards 
Gideon Rop 

On Thu, Jun 30, 2016 at 1:07 PM, < kictanet-request at lists.kictanet.or.ke > wrote: 


Send kictanet mailing list submissions to 
kictanet at lists.kictanet.or.ke 

To subscribe or unsubscribe via the World Wide Web, visit 
https://lists.kictanet.or.ke/mailman/listinfo/kictanet 
or, via email, send a message with subject or body 'help' to 
kictanet-request at lists.kictanet.or.ke 

You can reach the person managing the list at 
kictanet-owner at lists.kictanet.or.ke 

When replying, please edit your Subject line so it is more specific 
than "Re: Contents of kictanet digest..." 


Today's Topics: 

1. Re: Draft National ICT Policy Discussions Day 7 of 10: How to 
enhance Cybersecurity (Sam Oduor) 
2. Re: Draft National ICT Policy Discussions Day 7 of 10: How to 
enhance Cybersecurity (Barrack Otieno) 
3. Re: Draft National ICT Policy Discussions Day 7 of 10: How to 
enhance Cybersecurity (Ali Hussein) 


---------------------------------------------------------------------- 

Message: 1 
Date: Thu, 30 Jun 2016 12:41:32 +0300 
From: Sam Oduor < sam.oduor at gmail.com > 
To: KICTAnet ICT Policy Discussions < kictanet at lists.kictanet.or.ke > 
Subject: Re: [kictanet] Draft National ICT Policy Discussions Day 7 of 
10: How to enhance Cybersecurity 
Message-ID: 
<CAFwHH1YBYJwYQyYtCihg= UdjzPuQduXgeRTpnAbQy8CdTDoyUQ at mail.gmail.com > 
Content-Type: text/plain; charset="utf-8" 

Hi Barrack 

A great comment has been posted on the Jadii Platform 

June Tessy - a day ago Do we really need another 'specialized' agency yet 
there are already existing units in Government and Regulators that are 
mandated to deal with these like the National Intelligence Service, ICTA, 
CA Perhaps building onto the already existing units in terms of resources 
and capacity may be more sustainable 


On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet < 
kictanet at lists.kictanet.or.ke > wrote: 

> Listers, 
> 
> Many thanks to those who contribued to day 6 discussions. The thread 
> is still open, we also encourage listers to edit the policy directly 
> on the Jadili platform 
> ( http://jadili.ictpolicy.org/docs/kenya-ict-policy ). 
> 
> Today we focus on the following areas: 
> 
> 
> *Online Citizen Safety, 
> *Child Protection 
> *Privacy issues 
> *Security business transactions (Info-Security) 
> *Security & Reliability of Critical ICT infrastructure 
> 
> The Background: 
> 
> The more we automate and rely on digital services, the more vulnerable 
> we become as a society to cybercrime and other threats facing the 
> digital society. 
> 
> The regulator has a Computer Emergency Response Team (CERT), the 
> industry (TESPOK) also has a CERT, the Department of Criminal 
> Investigation & National Intelligence also have CERT. What is not 
> clear is whether there is a framework to have these teams working 
> together and their capacity to counter a full-blown cyber attack 
> against our digital national assets. 
> 
> Additionally, the tension between citizen privacy and national 
> security, citizen privacy and business (profit) concerns remain 
> perhaps due to lack of Data Protection, eTransaction and other laws. 
> Finally, special protection for vulnerable groups (children) going 
> online is non-existent. 
> 
> What needs to be done around these issues? 
> 
> Kindly submit your views. 
> 
> Best Regards 
> 
> -- 
> Barrack O. Otieno 
> +254721325277 
> +254733206359 
> Skype: barrack.otieno 
> PGP ID: 0x2611D86A 
> 
> _______________________________________________ 
> kictanet mailing list 
> kictanet at lists.kictanet.or.ke 
> https://lists.kictanet.or.ke/mailman/listinfo/kictanet 
> 
> Unsubscribe or change your options at 
> https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com 
> 
> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform 
> for people and institutions interested and involved in ICT policy and 
> regulation. The network aims to act as a catalyst for reform in the ICT 
> sector in support of the national aim of ICT enabled growth and development. 
> 
> KICTANetiquette : Adhere to the same standards of acceptable behaviors 
> online that you follow in real life: respect people's times and bandwidth, 
> share knowledge, don't flame or abuse or personalize, respect privacy, do 
> not spam, do not market your wares or qualifications. 
> 



-- 
Samson Oduor 
-------------- next part -------------- 
An HTML attachment was scrubbed... 
URL: < https://lists.kictanet.or.ke/pipermail/kictanet/attachments/20160630/7ab9d756/attachment-0001.html > 

------------------------------ 

Message: 2 
Date: Thu, 30 Jun 2016 12:52:48 +0300 
From: Barrack Otieno < otieno.barrack at gmail.com > 
To: Sam Oduor < sam.oduor at gmail.com > 
Cc: KICTAnet ICT Policy Discussions < kictanet at lists.kictanet.or.ke > 
Subject: Re: [kictanet] Draft National ICT Policy Discussions Day 7 of 
10: How to enhance Cybersecurity 
Message-ID: 
<CAKX6dsG6KXHwj5Km37NCJJv= u32SmwyCiSzuZ8eSmmTov_2CZQ at mail.gmail.com > 
Content-Type: text/plain; charset=UTF-8 

Great thanks Sam, 

We will collate all the comments and forwad them to the Ministry. 

Thank you 

Best Regards 

On 6/30/16, Sam Oduor < sam.oduor at gmail.com > wrote: 
> Hi Barrack 
> 
> A great comment has been posted on the Jadii Platform 
> 
> June Tessy - a day ago Do we really need another 'specialized' agency yet 
> there are already existing units in Government and Regulators that are 
> mandated to deal with these like the National Intelligence Service, ICTA, 
> CA Perhaps building onto the already existing units in terms of resources 
> and capacity may be more sustainable 
> 
> 
> On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet < 
> kictanet at lists.kictanet.or.ke > wrote: 
> 
>> Listers, 
>> 
>> Many thanks to those who contribued to day 6 discussions. The thread 
>> is still open, we also encourage listers to edit the policy directly 
>> on the Jadili platform 
>> ( http://jadili.ictpolicy.org/docs/kenya-ict-policy ). 
>> 
>> Today we focus on the following areas: 
>> 
>> 
>> *Online Citizen Safety, 
>> *Child Protection 
>> *Privacy issues 
>> *Security business transactions (Info-Security) 
>> *Security & Reliability of Critical ICT infrastructure 
>> 
>> The Background: 
>> 
>> The more we automate and rely on digital services, the more vulnerable 
>> we become as a society to cybercrime and other threats facing the 
>> digital society. 
>> 
>> The regulator has a Computer Emergency Response Team (CERT), the 
>> industry (TESPOK) also has a CERT, the Department of Criminal 
>> Investigation & National Intelligence also have CERT. What is not 
>> clear is whether there is a framework to have these teams working 
>> together and their capacity to counter a full-blown cyber attack 
>> against our digital national assets. 
>> 
>> Additionally, the tension between citizen privacy and national 
>> security, citizen privacy and business (profit) concerns remain 
>> perhaps due to lack of Data Protection, eTransaction and other laws. 
>> Finally, special protection for vulnerable groups (children) going 
>> online is non-existent. 
>> 
>> What needs to be done around these issues? 
>> 
>> Kindly submit your views. 
>> 
>> Best Regards 
>> 
>> -- 
>> Barrack O. Otieno 
>> +254721325277 
>> +254733206359 
>> Skype: barrack.otieno 
>> PGP ID: 0x2611D86A 
>> 
>> _______________________________________________ 
>> kictanet mailing list 
>> kictanet at lists.kictanet.or.ke 
>> https://lists.kictanet.or.ke/mailman/listinfo/kictanet 
>> 
>> Unsubscribe or change your options at 
>> https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com 
>> 
>> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform 
>> for people and institutions interested and involved in ICT policy and 
>> regulation. The network aims to act as a catalyst for reform in the ICT 
>> sector in support of the national aim of ICT enabled growth and 
>> development. 
>> 
>> KICTANetiquette : Adhere to the same standards of acceptable behaviors 
>> online that you follow in real life: respect people's times and 
>> bandwidth, 
>> share knowledge, don't flame or abuse or personalize, respect privacy, do 
>> not spam, do not market your wares or qualifications. 
>> 
> 
> 
> 
> -- 
> Samson Oduor 
> 


-- 
Barrack O. Otieno 
+254721325277 
+254733206359 
Skype: barrack.otieno 
PGP ID: 0x2611D86A 



------------------------------ 

Message: 3 
Date: Thu, 30 Jun 2016 13:03:45 +0300 
From: Ali Hussein < ali at hussein.me.ke > 
To: KICTAnet ICT Policy Discussions < kictanet at lists.kictanet.or.ke > 
Subject: Re: [kictanet] Draft National ICT Policy Discussions Day 7 of 
10: How to enhance Cybersecurity 
Message-ID: < EA30E4BA-9121-4085-84C5-61C532BA527A at hussein.me.ke > 
Content-Type: text/plain; charset="utf-8" 

All 

In relation to this, I discovered today that a lot of the privacy issues are allegedly being violated by a certain global brand. 

Google, could have a record of everything you have said around it for years, and you can listen to it yourself. 

The company quietly records many of the conversations that people have around its products. 

The feature works as a way of letting people search with their voice, and storing those recordings presumably lets Google improve its language recognition tools as well as the results that it gives to people. 

Read on:- 

http://www.independent.co.uk/life-style/gadgets-and-tech/news/google-voice-search-records-and-stores-conversation-people-have-around-their-phones-but-files-can-be-a7059376.html 

In relation to this discussion we would love to have a comment from the Ministry and Google. 

Ali Hussein 
Principal 
Hussein & Associates 
+254 0713 601113 / 0770906375 

Twitter: @AliHKassim 
Skype: abu-jomo 
LinkedIn: http://ke.linkedin.com/in/alihkassim 


"Discovery consists in seeing what everyone else has seen and thinking what no one else has thought". ~ Albert Szent-Gy?rgyi 

Sent from my iPad 

> On 30 Jun 2016, at 12:52 PM, Barrack Otieno via kictanet < kictanet at lists.kictanet.or.ke > wrote: 
> 
> Great thanks Sam, 
> 
> We will collate all the comments and forwad them to the Ministry. 
> 
> Thank you 
> 
> Best Regards 
> 
>> On 6/30/16, Sam Oduor < sam.oduor at gmail.com > wrote: 
>> Hi Barrack 
>> 
>> A great comment has been posted on the Jadii Platform 
>> 
>> June Tessy - a day ago Do we really need another 'specialized' agency yet 
>> there are already existing units in Government and Regulators that are 
>> mandated to deal with these like the National Intelligence Service, ICTA, 
>> CA Perhaps building onto the already existing units in terms of resources 
>> and capacity may be more sustainable 
>> 
>> 
>> On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet < 
>> kictanet at lists.kictanet.or.ke > wrote: 
>> 
>>> Listers, 
>>> 
>>> Many thanks to those who contribued to day 6 discussions. The thread 
>>> is still open, we also encourage listers to edit the policy directly 
>>> on the Jadili platform 
>>> ( http://jadili.ictpolicy.org/docs/kenya-ict-policy ). 
>>> 
>>> Today we focus on the following areas: 
>>> 
>>> 
>>> *Online Citizen Safety, 
>>> *Child Protection 
>>> *Privacy issues 
>>> *Security business transactions (Info-Security) 
>>> *Security & Reliability of Critical ICT infrastructure 
>>> 
>>> The Background: 
>>> 
>>> The more we automate and rely on digital services, the more vulnerable 
>>> we become as a society to cybercrime and other threats facing the 
>>> digital society. 
>>> 
>>> The regulator has a Computer Emergency Response Team (CERT), the 
>>> industry (TESPOK) also has a CERT, the Department of Criminal 
>>> Investigation & National Intelligence also have CERT. What is not 
>>> clear is whether there is a framework to have these teams working 
>>> together and their capacity to counter a full-blown cyber attack 
>>> against our digital national assets. 
>>> 
>>> Additionally, the tension between citizen privacy and national 
>>> security, citizen privacy and business (profit) concerns remain 
>>> perhaps due to lack of Data Protection, eTransaction and other laws. 
>>> Finally, special protection for vulnerable groups (children) going 
>>> online is non-existent. 
>>> 
>>> What needs to be done around these issues? 
>>> 
>>> Kindly submit your views. 
>>> 
>>> Best Regards 
>>> 
>>> -- 
>>> Barrack O. Otieno 
>>> +254721325277 
>>> +254733206359 
>>> Skype: barrack.otieno 
>>> PGP ID: 0x2611D86A 
>>> 
>>> _______________________________________________ 
>>> kictanet mailing list 
>>> kictanet at lists.kictanet.or.ke 
>>> https://lists.kictanet.or.ke/mailman/listinfo/kictanet 
>>> 
>>> Unsubscribe or change your options at 
>>> https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com 
>>> 
>>> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform 
>>> for people and institutions interested and involved in ICT policy and 
>>> regulation. The network aims to act as a catalyst for reform in the ICT 
>>> sector in support of the national aim of ICT enabled growth and 
>>> development. 
>>> 
>>> KICTANetiquette : Adhere to the same standards of acceptable behaviors 
>>> online that you follow in real life: respect people's times and 
>>> bandwidth, 
>>> share knowledge, don't flame or abuse or personalize, respect privacy, do 
>>> not spam, do not market your wares or qualifications. 
>> 
>> 
>> 
>> -- 
>> Samson Oduor 
> 
> 
> -- 
> Barrack O. Otieno 
> +254721325277 
> +254733206359 
> Skype: barrack.otieno 
> PGP ID: 0x2611D86A 
> 
> _______________________________________________ 
> kictanet mailing list 
> kictanet at lists.kictanet.or.ke 
> https://lists.kictanet.or.ke/mailman/listinfo/kictanet 
> 
> Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/info%40alyhussein.com 
> 
> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development. 
> 
> KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications. 
-------------- next part -------------- 
An HTML attachment was scrubbed... 
URL: < https://lists.kictanet.or.ke/pipermail/kictanet/attachments/20160630/45070d95/attachment.html > 

------------------------------ 

Subject: Digest Footer 

_______________________________________________ 
kictanet mailing list 
kictanet at lists.kictanet.or.ke 
https://lists.kictanet.or.ke/mailman/listinfo/kictanet 


------------------------------ 

End of kictanet Digest, Vol 109, Issue 129 
****************************************** 





_______________________________________________ 
kictanet mailing list 
kictanet at lists.kictanet.or.ke 
https://lists.kictanet.or.ke/mailman/listinfo/kictanet 

Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/henry%40article19.org 

The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development. 

KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications. 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.kictanet.or.ke/pipermail/kictanet/attachments/20160630/5f2b0a7a/attachment.htm>


More information about the KICTANet mailing list