[kictanet] Draft National ICT Policy Discussions Day 7 of 10: How to enhance Cybersecurity
henry at article19.org
henry at article19.org
Thu Jun 30 16:13:57 EAT 2016
Dear Listers,
I can attest that there is an inter-agency team working on a Computer and Cybercrime Bill, 2016. I joined the team after we analysed a draft that was developed by the ODPP. While a Zero draft is yet to be finalised. I know that we agreed that it will not address itself to hate speech issues. I was therefore taken aback by the CS Mucheru position yesterday which seemed to make references to the 2014 Draft Bill developed by the ODPP other than the one being developed by the Inter-agency committee. See a link to our analysis of the old 2014 Bill
https://www.article19.org/resources.php/resource/37652/en/kenya:-cybercrime-and-computer-related-crimes-bill
The inter- agency Bill is looking at five main areas/offences:
1. Unauthorised access including unauthorised disclosure of access codes/passwords;
2. Unauthorised interception and unauthorised interference
3. Computer fraud and forgery
4. Child pornography
5. Cyber-stalking and cyber bullying
I undertake to make available the Draft Bill once a full version is a ready.
Kind regards
Henry
From: "Gideon via kictanet" <kictanet at lists.kictanet.or.ke>
To: henry at article19.org
Cc: "Gideon" <gideonrop at gmail.com>
Sent: Thursday, June 30, 2016 1:41:38 PM
Subject: [kictanet] Draft National ICT Policy Discussions Day 7 of 10: How to enhance Cybersecurity
Dear Listers,
Thank you for these moving inputs.
On today's important topic how to enhance Cybersecurity, i will zero in on the awareness of the end user. Most of the time the end user may not know that they are a subject of an attack and that boils down to the need for basic knowledge sharing on what constitutes a cyber attack and how to secure your own system from viruses, malware and lately ransomware among other attacks.
I believe many users need a constant reminder to update their system protections and also know what and where not to click, this could help a lot.
On the issue of privacy, i did a paper sometimes back on social media and privacy, and from my small survey, i discovered not many users of these platforms had read or knew about what their rights as regards privacy, personal data among other key implements.
Therefore again I call for constant efforts for awareness.
Kind regards
Gideon Rop
On Thu, Jun 30, 2016 at 1:07 PM, < kictanet-request at lists.kictanet.or.ke > wrote:
Send kictanet mailing list submissions to
kictanet at lists.kictanet.or.ke
To subscribe or unsubscribe via the World Wide Web, visit
https://lists.kictanet.or.ke/mailman/listinfo/kictanet
or, via email, send a message with subject or body 'help' to
kictanet-request at lists.kictanet.or.ke
You can reach the person managing the list at
kictanet-owner at lists.kictanet.or.ke
When replying, please edit your Subject line so it is more specific
than "Re: Contents of kictanet digest..."
Today's Topics:
1. Re: Draft National ICT Policy Discussions Day 7 of 10: How to
enhance Cybersecurity (Sam Oduor)
2. Re: Draft National ICT Policy Discussions Day 7 of 10: How to
enhance Cybersecurity (Barrack Otieno)
3. Re: Draft National ICT Policy Discussions Day 7 of 10: How to
enhance Cybersecurity (Ali Hussein)
----------------------------------------------------------------------
Message: 1
Date: Thu, 30 Jun 2016 12:41:32 +0300
From: Sam Oduor < sam.oduor at gmail.com >
To: KICTAnet ICT Policy Discussions < kictanet at lists.kictanet.or.ke >
Subject: Re: [kictanet] Draft National ICT Policy Discussions Day 7 of
10: How to enhance Cybersecurity
Message-ID:
<CAFwHH1YBYJwYQyYtCihg= UdjzPuQduXgeRTpnAbQy8CdTDoyUQ at mail.gmail.com >
Content-Type: text/plain; charset="utf-8"
Hi Barrack
A great comment has been posted on the Jadii Platform
June Tessy - a day ago Do we really need another 'specialized' agency yet
there are already existing units in Government and Regulators that are
mandated to deal with these like the National Intelligence Service, ICTA,
CA Perhaps building onto the already existing units in terms of resources
and capacity may be more sustainable
On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet <
kictanet at lists.kictanet.or.ke > wrote:
> Listers,
>
> Many thanks to those who contribued to day 6 discussions. The thread
> is still open, we also encourage listers to edit the policy directly
> on the Jadili platform
> ( http://jadili.ictpolicy.org/docs/kenya-ict-policy ).
>
> Today we focus on the following areas:
>
>
> *Online Citizen Safety,
> *Child Protection
> *Privacy issues
> *Security business transactions (Info-Security)
> *Security & Reliability of Critical ICT infrastructure
>
> The Background:
>
> The more we automate and rely on digital services, the more vulnerable
> we become as a society to cybercrime and other threats facing the
> digital society.
>
> The regulator has a Computer Emergency Response Team (CERT), the
> industry (TESPOK) also has a CERT, the Department of Criminal
> Investigation & National Intelligence also have CERT. What is not
> clear is whether there is a framework to have these teams working
> together and their capacity to counter a full-blown cyber attack
> against our digital national assets.
>
> Additionally, the tension between citizen privacy and national
> security, citizen privacy and business (profit) concerns remain
> perhaps due to lack of Data Protection, eTransaction and other laws.
> Finally, special protection for vulnerable groups (children) going
> online is non-existent.
>
> What needs to be done around these issues?
>
> Kindly submit your views.
>
> Best Regards
>
> --
> Barrack O. Otieno
> +254721325277
> +254733206359
> Skype: barrack.otieno
> PGP ID: 0x2611D86A
>
> _______________________________________________
> kictanet mailing list
> kictanet at lists.kictanet.or.ke
> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>
> Unsubscribe or change your options at
> https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
>
> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
> for people and institutions interested and involved in ICT policy and
> regulation. The network aims to act as a catalyst for reform in the ICT
> sector in support of the national aim of ICT enabled growth and development.
>
> KICTANetiquette : Adhere to the same standards of acceptable behaviors
> online that you follow in real life: respect people's times and bandwidth,
> share knowledge, don't flame or abuse or personalize, respect privacy, do
> not spam, do not market your wares or qualifications.
>
--
Samson Oduor
-------------- next part --------------
An HTML attachment was scrubbed...
URL: < https://lists.kictanet.or.ke/pipermail/kictanet/attachments/20160630/7ab9d756/attachment-0001.html >
------------------------------
Message: 2
Date: Thu, 30 Jun 2016 12:52:48 +0300
From: Barrack Otieno < otieno.barrack at gmail.com >
To: Sam Oduor < sam.oduor at gmail.com >
Cc: KICTAnet ICT Policy Discussions < kictanet at lists.kictanet.or.ke >
Subject: Re: [kictanet] Draft National ICT Policy Discussions Day 7 of
10: How to enhance Cybersecurity
Message-ID:
<CAKX6dsG6KXHwj5Km37NCJJv= u32SmwyCiSzuZ8eSmmTov_2CZQ at mail.gmail.com >
Content-Type: text/plain; charset=UTF-8
Great thanks Sam,
We will collate all the comments and forwad them to the Ministry.
Thank you
Best Regards
On 6/30/16, Sam Oduor < sam.oduor at gmail.com > wrote:
> Hi Barrack
>
> A great comment has been posted on the Jadii Platform
>
> June Tessy - a day ago Do we really need another 'specialized' agency yet
> there are already existing units in Government and Regulators that are
> mandated to deal with these like the National Intelligence Service, ICTA,
> CA Perhaps building onto the already existing units in terms of resources
> and capacity may be more sustainable
>
>
> On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet <
> kictanet at lists.kictanet.or.ke > wrote:
>
>> Listers,
>>
>> Many thanks to those who contribued to day 6 discussions. The thread
>> is still open, we also encourage listers to edit the policy directly
>> on the Jadili platform
>> ( http://jadili.ictpolicy.org/docs/kenya-ict-policy ).
>>
>> Today we focus on the following areas:
>>
>>
>> *Online Citizen Safety,
>> *Child Protection
>> *Privacy issues
>> *Security business transactions (Info-Security)
>> *Security & Reliability of Critical ICT infrastructure
>>
>> The Background:
>>
>> The more we automate and rely on digital services, the more vulnerable
>> we become as a society to cybercrime and other threats facing the
>> digital society.
>>
>> The regulator has a Computer Emergency Response Team (CERT), the
>> industry (TESPOK) also has a CERT, the Department of Criminal
>> Investigation & National Intelligence also have CERT. What is not
>> clear is whether there is a framework to have these teams working
>> together and their capacity to counter a full-blown cyber attack
>> against our digital national assets.
>>
>> Additionally, the tension between citizen privacy and national
>> security, citizen privacy and business (profit) concerns remain
>> perhaps due to lack of Data Protection, eTransaction and other laws.
>> Finally, special protection for vulnerable groups (children) going
>> online is non-existent.
>>
>> What needs to be done around these issues?
>>
>> Kindly submit your views.
>>
>> Best Regards
>>
>> --
>> Barrack O. Otieno
>> +254721325277
>> +254733206359
>> Skype: barrack.otieno
>> PGP ID: 0x2611D86A
>>
>> _______________________________________________
>> kictanet mailing list
>> kictanet at lists.kictanet.or.ke
>> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>>
>> Unsubscribe or change your options at
>> https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
>>
>> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
>> for people and institutions interested and involved in ICT policy and
>> regulation. The network aims to act as a catalyst for reform in the ICT
>> sector in support of the national aim of ICT enabled growth and
>> development.
>>
>> KICTANetiquette : Adhere to the same standards of acceptable behaviors
>> online that you follow in real life: respect people's times and
>> bandwidth,
>> share knowledge, don't flame or abuse or personalize, respect privacy, do
>> not spam, do not market your wares or qualifications.
>>
>
>
>
> --
> Samson Oduor
>
--
Barrack O. Otieno
+254721325277
+254733206359
Skype: barrack.otieno
PGP ID: 0x2611D86A
------------------------------
Message: 3
Date: Thu, 30 Jun 2016 13:03:45 +0300
From: Ali Hussein < ali at hussein.me.ke >
To: KICTAnet ICT Policy Discussions < kictanet at lists.kictanet.or.ke >
Subject: Re: [kictanet] Draft National ICT Policy Discussions Day 7 of
10: How to enhance Cybersecurity
Message-ID: < EA30E4BA-9121-4085-84C5-61C532BA527A at hussein.me.ke >
Content-Type: text/plain; charset="utf-8"
All
In relation to this, I discovered today that a lot of the privacy issues are allegedly being violated by a certain global brand.
Google, could have a record of everything you have said around it for years, and you can listen to it yourself.
The company quietly records many of the conversations that people have around its products.
The feature works as a way of letting people search with their voice, and storing those recordings presumably lets Google improve its language recognition tools as well as the results that it gives to people.
Read on:-
http://www.independent.co.uk/life-style/gadgets-and-tech/news/google-voice-search-records-and-stores-conversation-people-have-around-their-phones-but-files-can-be-a7059376.html
In relation to this discussion we would love to have a comment from the Ministry and Google.
Ali Hussein
Principal
Hussein & Associates
+254 0713 601113 / 0770906375
Twitter: @AliHKassim
Skype: abu-jomo
LinkedIn: http://ke.linkedin.com/in/alihkassim
"Discovery consists in seeing what everyone else has seen and thinking what no one else has thought". ~ Albert Szent-Gy?rgyi
Sent from my iPad
> On 30 Jun 2016, at 12:52 PM, Barrack Otieno via kictanet < kictanet at lists.kictanet.or.ke > wrote:
>
> Great thanks Sam,
>
> We will collate all the comments and forwad them to the Ministry.
>
> Thank you
>
> Best Regards
>
>> On 6/30/16, Sam Oduor < sam.oduor at gmail.com > wrote:
>> Hi Barrack
>>
>> A great comment has been posted on the Jadii Platform
>>
>> June Tessy - a day ago Do we really need another 'specialized' agency yet
>> there are already existing units in Government and Regulators that are
>> mandated to deal with these like the National Intelligence Service, ICTA,
>> CA Perhaps building onto the already existing units in terms of resources
>> and capacity may be more sustainable
>>
>>
>> On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet <
>> kictanet at lists.kictanet.or.ke > wrote:
>>
>>> Listers,
>>>
>>> Many thanks to those who contribued to day 6 discussions. The thread
>>> is still open, we also encourage listers to edit the policy directly
>>> on the Jadili platform
>>> ( http://jadili.ictpolicy.org/docs/kenya-ict-policy ).
>>>
>>> Today we focus on the following areas:
>>>
>>>
>>> *Online Citizen Safety,
>>> *Child Protection
>>> *Privacy issues
>>> *Security business transactions (Info-Security)
>>> *Security & Reliability of Critical ICT infrastructure
>>>
>>> The Background:
>>>
>>> The more we automate and rely on digital services, the more vulnerable
>>> we become as a society to cybercrime and other threats facing the
>>> digital society.
>>>
>>> The regulator has a Computer Emergency Response Team (CERT), the
>>> industry (TESPOK) also has a CERT, the Department of Criminal
>>> Investigation & National Intelligence also have CERT. What is not
>>> clear is whether there is a framework to have these teams working
>>> together and their capacity to counter a full-blown cyber attack
>>> against our digital national assets.
>>>
>>> Additionally, the tension between citizen privacy and national
>>> security, citizen privacy and business (profit) concerns remain
>>> perhaps due to lack of Data Protection, eTransaction and other laws.
>>> Finally, special protection for vulnerable groups (children) going
>>> online is non-existent.
>>>
>>> What needs to be done around these issues?
>>>
>>> Kindly submit your views.
>>>
>>> Best Regards
>>>
>>> --
>>> Barrack O. Otieno
>>> +254721325277
>>> +254733206359
>>> Skype: barrack.otieno
>>> PGP ID: 0x2611D86A
>>>
>>> _______________________________________________
>>> kictanet mailing list
>>> kictanet at lists.kictanet.or.ke
>>> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>>>
>>> Unsubscribe or change your options at
>>> https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
>>>
>>> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
>>> for people and institutions interested and involved in ICT policy and
>>> regulation. The network aims to act as a catalyst for reform in the ICT
>>> sector in support of the national aim of ICT enabled growth and
>>> development.
>>>
>>> KICTANetiquette : Adhere to the same standards of acceptable behaviors
>>> online that you follow in real life: respect people's times and
>>> bandwidth,
>>> share knowledge, don't flame or abuse or personalize, respect privacy, do
>>> not spam, do not market your wares or qualifications.
>>
>>
>>
>> --
>> Samson Oduor
>
>
> --
> Barrack O. Otieno
> +254721325277
> +254733206359
> Skype: barrack.otieno
> PGP ID: 0x2611D86A
>
> _______________________________________________
> kictanet mailing list
> kictanet at lists.kictanet.or.ke
> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>
> Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/info%40alyhussein.com
>
> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.
>
> KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: < https://lists.kictanet.or.ke/pipermail/kictanet/attachments/20160630/45070d95/attachment.html >
------------------------------
Subject: Digest Footer
_______________________________________________
kictanet mailing list
kictanet at lists.kictanet.or.ke
https://lists.kictanet.or.ke/mailman/listinfo/kictanet
------------------------------
End of kictanet Digest, Vol 109, Issue 129
******************************************
_______________________________________________
kictanet mailing list
kictanet at lists.kictanet.or.ke
https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/henry%40article19.org
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.
KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.kictanet.or.ke/pipermail/kictanet/attachments/20160630/5f2b0a7a/attachment.htm>
More information about the KICTANet
mailing list