[kictanet] Draft National ICT Policy Discussions Day 7 of 10: How to enhance Cybersecurity
Ephraim Percy Kenyanito
ephraim at accessnow.org
Thu Jun 30 16:20:52 EAT 2016
Thanks Henry, looking forward to further followup on the bill.
--
Best Regards,
*Ephraim Percy Kenyanito*
Sub-Saharan Africa Policy Analyst/ Mchambuzi wa Sera Afrika Kusini ya Sahara
Access Now | accessnow.org
@ekenyanito
PGP: E6BA8DC1
Fingerprint: B0FA394AF73DEB7AA1FDC7360CFED26DE6BA8DC1
*Subscribe *to the Access Now Express
<https://www.accessnow.org/campaign/#sign-up>, our weekly newsletter on
digital rights
*Sign up* for our action alerts <https://www.accessnow.org/campaign/>
On 30 June 2016 at 16:13, henry--- via kictanet <
kictanet at lists.kictanet.or.ke> wrote:
> Dear Listers,
>
> I can attest that there is an inter-agency team working on a Computer and
> Cybercrime Bill, 2016. I joined the team after we analysed a draft that was
> developed by the ODPP. While a Zero draft is yet to be finalised. I know
> that we agreed that it will not address itself to hate speech issues. I was
> therefore taken aback by the CS Mucheru position yesterday which seemed to
> make references to the 2014 Draft Bill developed by the ODPP other than the
> one being developed by the Inter-agency committee. See a link to our
> analysis of the old 2014 Bill
>
> https://www.article19.org/resources.php/resource/37652/en/kenya:-cybercrime-and-computer-related-crimes-bill
>
> The inter- agency Bill is looking at five main areas/offences:
> 1. Unauthorised access including unauthorised disclosure of access
> codes/passwords;
> 2. Unauthorised interception and unauthorised interference
> 3. Computer fraud and forgery
> 4. Child pornography
> 5. Cyber-stalking and cyber bullying
>
> I undertake to make available the Draft Bill once a full version is a
> ready.
> Kind regards
>
> Henry
>
> ------------------------------
> *From: *"Gideon via kictanet" <kictanet at lists.kictanet.or.ke>
> *To: *henry at article19.org
> *Cc: *"Gideon" <gideonrop at gmail.com>
> *Sent: *Thursday, June 30, 2016 1:41:38 PM
> *Subject: *[kictanet] Draft National ICT Policy Discussions Day 7 of 10:
> How to enhance Cybersecurity
>
> Dear Listers,
>
> Thank you for these moving inputs.
>
> On today's important topic how to enhance Cybersecurity, i will zero in on
> the awareness of the end user. Most of the time the end user may not know
> that they are a subject of an attack and that boils down to the need for
> basic knowledge sharing on what constitutes a cyber attack and how to
> secure your own system from viruses, malware and lately ransomware among
> other attacks.
>
> I believe many users need a constant reminder to update their system
> protections and also know what and where not to click, this could help a
> lot.
>
> On the issue of privacy, i did a paper sometimes back on social media and
> privacy, and from my small survey, i discovered not many users of these
> platforms had read or knew about what their rights as regards privacy,
> personal data among other key implements.
>
> Therefore again I call for constant efforts for awareness.
>
> Kind regards
> Gideon Rop
>
> On Thu, Jun 30, 2016 at 1:07 PM, <kictanet-request at lists.kictanet.or.ke>
> wrote:
>
>> Send kictanet mailing list submissions to
>> kictanet at lists.kictanet.or.ke
>>
>> To subscribe or unsubscribe via the World Wide Web, visit
>> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>> or, via email, send a message with subject or body 'help' to
>> kictanet-request at lists.kictanet.or.ke
>>
>> You can reach the person managing the list at
>> kictanet-owner at lists.kictanet.or.ke
>>
>> When replying, please edit your Subject line so it is more specific
>> than "Re: Contents of kictanet digest..."
>>
>>
>> Today's Topics:
>>
>> 1. Re: Draft National ICT Policy Discussions Day 7 of 10: How to
>> enhance Cybersecurity (Sam Oduor)
>> 2. Re: Draft National ICT Policy Discussions Day 7 of 10: How to
>> enhance Cybersecurity (Barrack Otieno)
>> 3. Re: Draft National ICT Policy Discussions Day 7 of 10: How to
>> enhance Cybersecurity (Ali Hussein)
>>
>>
>> ----------------------------------------------------------------------
>>
>> Message: 1
>> Date: Thu, 30 Jun 2016 12:41:32 +0300
>> From: Sam Oduor <sam.oduor at gmail.com>
>> To: KICTAnet ICT Policy Discussions <kictanet at lists.kictanet.or.ke>
>> Subject: Re: [kictanet] Draft National ICT Policy Discussions Day 7 of
>> 10: How to enhance Cybersecurity
>> Message-ID:
>> <CAFwHH1YBYJwYQyYtCihg=
>> UdjzPuQduXgeRTpnAbQy8CdTDoyUQ at mail.gmail.com>
>> Content-Type: text/plain; charset="utf-8"
>>
>> Hi Barrack
>>
>> A great comment has been posted on the Jadii Platform
>>
>> June Tessy - a day ago Do we really need another 'specialized' agency yet
>> there are already existing units in Government and Regulators that are
>> mandated to deal with these like the National Intelligence Service, ICTA,
>> CA Perhaps building onto the already existing units in terms of resources
>> and capacity may be more sustainable
>>
>>
>> On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet <
>> kictanet at lists.kictanet.or.ke> wrote:
>>
>> > Listers,
>> >
>> > Many thanks to those who contribued to day 6 discussions. The thread
>> > is still open, we also encourage listers to edit the policy directly
>> > on the Jadili platform
>> > (http://jadili.ictpolicy.org/docs/kenya-ict-policy).
>> >
>> > Today we focus on the following areas:
>> >
>> >
>> > *Online Citizen Safety,
>> > *Child Protection
>> > *Privacy issues
>> > *Security business transactions (Info-Security)
>> > *Security & Reliability of Critical ICT infrastructure
>> >
>> > The Background:
>> >
>> > The more we automate and rely on digital services, the more vulnerable
>> > we become as a society to cybercrime and other threats facing the
>> > digital society.
>> >
>> > The regulator has a Computer Emergency Response Team (CERT), the
>> > industry (TESPOK) also has a CERT, the Department of Criminal
>> > Investigation & National Intelligence also have CERT. What is not
>> > clear is whether there is a framework to have these teams working
>> > together and their capacity to counter a full-blown cyber attack
>> > against our digital national assets.
>> >
>> > Additionally, the tension between citizen privacy and national
>> > security, citizen privacy and business (profit) concerns remain
>> > perhaps due to lack of Data Protection, eTransaction and other laws.
>> > Finally, special protection for vulnerable groups (children) going
>> > online is non-existent.
>> >
>> > What needs to be done around these issues?
>> >
>> > Kindly submit your views.
>> >
>> > Best Regards
>> >
>> > --
>> > Barrack O. Otieno
>> > +254721325277
>> > +254733206359
>> > Skype: barrack.otieno
>> > PGP ID: 0x2611D86A
>> >
>> > _______________________________________________
>> > kictanet mailing list
>> > kictanet at lists.kictanet.or.ke
>> > https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>> >
>> > Unsubscribe or change your options at
>> >
>> https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
>> >
>> > The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
>> > for people and institutions interested and involved in ICT policy and
>> > regulation. The network aims to act as a catalyst for reform in the ICT
>> > sector in support of the national aim of ICT enabled growth and
>> development.
>> >
>> > KICTANetiquette : Adhere to the same standards of acceptable behaviors
>> > online that you follow in real life: respect people's times and
>> bandwidth,
>> > share knowledge, don't flame or abuse or personalize, respect privacy,
>> do
>> > not spam, do not market your wares or qualifications.
>> >
>>
>>
>>
>> --
>> Samson Oduor
>> -------------- next part --------------
>> An HTML attachment was scrubbed...
>> URL: <
>> https://lists.kictanet.or.ke/pipermail/kictanet/attachments/20160630/7ab9d756/attachment-0001.html
>> >
>>
>> ------------------------------
>>
>> Message: 2
>> Date: Thu, 30 Jun 2016 12:52:48 +0300
>> From: Barrack Otieno <otieno.barrack at gmail.com>
>> To: Sam Oduor <sam.oduor at gmail.com>
>> Cc: KICTAnet ICT Policy Discussions <kictanet at lists.kictanet.or.ke>
>> Subject: Re: [kictanet] Draft National ICT Policy Discussions Day 7 of
>> 10: How to enhance Cybersecurity
>> Message-ID:
>> <CAKX6dsG6KXHwj5Km37NCJJv=
>> u32SmwyCiSzuZ8eSmmTov_2CZQ at mail.gmail.com>
>> Content-Type: text/plain; charset=UTF-8
>>
>> Great thanks Sam,
>>
>> We will collate all the comments and forwad them to the Ministry.
>>
>> Thank you
>>
>> Best Regards
>>
>> On 6/30/16, Sam Oduor <sam.oduor at gmail.com> wrote:
>> > Hi Barrack
>> >
>> > A great comment has been posted on the Jadii Platform
>> >
>> > June Tessy - a day ago Do we really need another 'specialized' agency
>> yet
>> > there are already existing units in Government and Regulators that are
>> > mandated to deal with these like the National Intelligence Service,
>> ICTA,
>> > CA Perhaps building onto the already existing units in terms of
>> resources
>> > and capacity may be more sustainable
>> >
>> >
>> > On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet <
>> > kictanet at lists.kictanet.or.ke> wrote:
>> >
>> >> Listers,
>> >>
>> >> Many thanks to those who contribued to day 6 discussions. The thread
>> >> is still open, we also encourage listers to edit the policy directly
>> >> on the Jadili platform
>> >> (http://jadili.ictpolicy.org/docs/kenya-ict-policy).
>> >>
>> >> Today we focus on the following areas:
>> >>
>> >>
>> >> *Online Citizen Safety,
>> >> *Child Protection
>> >> *Privacy issues
>> >> *Security business transactions (Info-Security)
>> >> *Security & Reliability of Critical ICT infrastructure
>> >>
>> >> The Background:
>> >>
>> >> The more we automate and rely on digital services, the more vulnerable
>> >> we become as a society to cybercrime and other threats facing the
>> >> digital society.
>> >>
>> >> The regulator has a Computer Emergency Response Team (CERT), the
>> >> industry (TESPOK) also has a CERT, the Department of Criminal
>> >> Investigation & National Intelligence also have CERT. What is not
>> >> clear is whether there is a framework to have these teams working
>> >> together and their capacity to counter a full-blown cyber attack
>> >> against our digital national assets.
>> >>
>> >> Additionally, the tension between citizen privacy and national
>> >> security, citizen privacy and business (profit) concerns remain
>> >> perhaps due to lack of Data Protection, eTransaction and other laws.
>> >> Finally, special protection for vulnerable groups (children) going
>> >> online is non-existent.
>> >>
>> >> What needs to be done around these issues?
>> >>
>> >> Kindly submit your views.
>> >>
>> >> Best Regards
>> >>
>> >> --
>> >> Barrack O. Otieno
>> >> +254721325277
>> >> +254733206359
>> >> Skype: barrack.otieno
>> >> PGP ID: 0x2611D86A
>> >>
>> >> _______________________________________________
>> >> kictanet mailing list
>> >> kictanet at lists.kictanet.or.ke
>> >> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>> >>
>> >> Unsubscribe or change your options at
>> >>
>> https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
>> >>
>> >> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
>> >> for people and institutions interested and involved in ICT policy and
>> >> regulation. The network aims to act as a catalyst for reform in the ICT
>> >> sector in support of the national aim of ICT enabled growth and
>> >> development.
>> >>
>> >> KICTANetiquette : Adhere to the same standards of acceptable behaviors
>> >> online that you follow in real life: respect people's times and
>> >> bandwidth,
>> >> share knowledge, don't flame or abuse or personalize, respect privacy,
>> do
>> >> not spam, do not market your wares or qualifications.
>> >>
>> >
>> >
>> >
>> > --
>> > Samson Oduor
>> >
>>
>>
>> --
>> Barrack O. Otieno
>> +254721325277
>> +254733206359
>> Skype: barrack.otieno
>> PGP ID: 0x2611D86A
>>
>>
>>
>> ------------------------------
>>
>> Message: 3
>> Date: Thu, 30 Jun 2016 13:03:45 +0300
>> From: Ali Hussein <ali at hussein.me.ke>
>> To: KICTAnet ICT Policy Discussions <kictanet at lists.kictanet.or.ke>
>> Subject: Re: [kictanet] Draft National ICT Policy Discussions Day 7 of
>> 10: How to enhance Cybersecurity
>> Message-ID: <EA30E4BA-9121-4085-84C5-61C532BA527A at hussein.me.ke>
>> Content-Type: text/plain; charset="utf-8"
>>
>> All
>>
>> In relation to this, I discovered today that a lot of the privacy issues
>> are allegedly being violated by a certain global brand.
>>
>> Google, could have a record of everything you have said around it for
>> years, and you can listen to it yourself.
>>
>> The company quietly records many of the conversations that people have
>> around its products.
>>
>> The feature works as a way of letting people search with their voice, and
>> storing those recordings presumably lets Google improve its language
>> recognition tools as well as the results that it gives to people.
>>
>> Read on:-
>>
>>
>> http://www.independent.co.uk/life-style/gadgets-and-tech/news/google-voice-search-records-and-stores-conversation-people-have-around-their-phones-but-files-can-be-a7059376.html
>>
>> In relation to this discussion we would love to have a comment from the
>> Ministry and Google.
>>
>> Ali Hussein
>> Principal
>> Hussein & Associates
>> +254 0713 601113 / 0770906375
>>
>> Twitter: @AliHKassim
>> Skype: abu-jomo
>> LinkedIn: http://ke.linkedin.com/in/alihkassim
>>
>>
>> "Discovery consists in seeing what everyone else has seen and thinking
>> what no one else has thought". ~ Albert Szent-Gy?rgyi
>>
>> Sent from my iPad
>>
>> > On 30 Jun 2016, at 12:52 PM, Barrack Otieno via kictanet <
>> kictanet at lists.kictanet.or.ke> wrote:
>> >
>> > Great thanks Sam,
>> >
>> > We will collate all the comments and forwad them to the Ministry.
>> >
>> > Thank you
>> >
>> > Best Regards
>> >
>> >> On 6/30/16, Sam Oduor <sam.oduor at gmail.com> wrote:
>> >> Hi Barrack
>> >>
>> >> A great comment has been posted on the Jadii Platform
>> >>
>> >> June Tessy - a day ago Do we really need another 'specialized' agency
>> yet
>> >> there are already existing units in Government and Regulators that are
>> >> mandated to deal with these like the National Intelligence Service,
>> ICTA,
>> >> CA Perhaps building onto the already existing units in terms of
>> resources
>> >> and capacity may be more sustainable
>> >>
>> >>
>> >> On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet <
>> >> kictanet at lists.kictanet.or.ke> wrote:
>> >>
>> >>> Listers,
>> >>>
>> >>> Many thanks to those who contribued to day 6 discussions. The thread
>> >>> is still open, we also encourage listers to edit the policy directly
>> >>> on the Jadili platform
>> >>> (http://jadili.ictpolicy.org/docs/kenya-ict-policy).
>> >>>
>> >>> Today we focus on the following areas:
>> >>>
>> >>>
>> >>> *Online Citizen Safety,
>> >>> *Child Protection
>> >>> *Privacy issues
>> >>> *Security business transactions (Info-Security)
>> >>> *Security & Reliability of Critical ICT infrastructure
>> >>>
>> >>> The Background:
>> >>>
>> >>> The more we automate and rely on digital services, the more vulnerable
>> >>> we become as a society to cybercrime and other threats facing the
>> >>> digital society.
>> >>>
>> >>> The regulator has a Computer Emergency Response Team (CERT), the
>> >>> industry (TESPOK) also has a CERT, the Department of Criminal
>> >>> Investigation & National Intelligence also have CERT. What is not
>> >>> clear is whether there is a framework to have these teams working
>> >>> together and their capacity to counter a full-blown cyber attack
>> >>> against our digital national assets.
>> >>>
>> >>> Additionally, the tension between citizen privacy and national
>> >>> security, citizen privacy and business (profit) concerns remain
>> >>> perhaps due to lack of Data Protection, eTransaction and other laws.
>> >>> Finally, special protection for vulnerable groups (children) going
>> >>> online is non-existent.
>> >>>
>> >>> What needs to be done around these issues?
>> >>>
>> >>> Kindly submit your views.
>> >>>
>> >>> Best Regards
>> >>>
>> >>> --
>> >>> Barrack O. Otieno
>> >>> +254721325277
>> >>> +254733206359
>> >>> Skype: barrack.otieno
>> >>> PGP ID: 0x2611D86A
>> >>>
>> >>> _______________________________________________
>> >>> kictanet mailing list
>> >>> kictanet at lists.kictanet.or.ke
>> >>> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>> >>>
>> >>> Unsubscribe or change your options at
>> >>>
>> https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
>> >>>
>> >>> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder
>> platform
>> >>> for people and institutions interested and involved in ICT policy and
>> >>> regulation. The network aims to act as a catalyst for reform in the
>> ICT
>> >>> sector in support of the national aim of ICT enabled growth and
>> >>> development.
>> >>>
>> >>> KICTANetiquette : Adhere to the same standards of acceptable behaviors
>> >>> online that you follow in real life: respect people's times and
>> >>> bandwidth,
>> >>> share knowledge, don't flame or abuse or personalize, respect
>> privacy, do
>> >>> not spam, do not market your wares or qualifications.
>> >>
>> >>
>> >>
>> >> --
>> >> Samson Oduor
>> >
>> >
>> > --
>> > Barrack O. Otieno
>> > +254721325277
>> > +254733206359
>> > Skype: barrack.otieno
>> > PGP ID: 0x2611D86A
>> >
>> > _______________________________________________
>> > kictanet mailing list
>> > kictanet at lists.kictanet.or.ke
>> > https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>> >
>> > Unsubscribe or change your options at
>> https://lists.kictanet.or.ke/mailman/options/kictanet/info%40alyhussein.com
>> >
>> > The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
>> for people and institutions interested and involved in ICT policy and
>> regulation. The network aims to act as a catalyst for reform in the ICT
>> sector in support of the national aim of ICT enabled growth and development.
>> >
>> > KICTANetiquette : Adhere to the same standards of acceptable behaviors
>> online that you follow in real life: respect people's times and bandwidth,
>> share knowledge, don't flame or abuse or personalize, respect privacy, do
>> not spam, do not market your wares or qualifications.
>> -------------- next part --------------
>> An HTML attachment was scrubbed...
>> URL: <
>> https://lists.kictanet.or.ke/pipermail/kictanet/attachments/20160630/45070d95/attachment.html
>> >
>>
>> ------------------------------
>>
>> Subject: Digest Footer
>>
>> _______________________________________________
>> kictanet mailing list
>> kictanet at lists.kictanet.or.ke
>> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>>
>>
>> ------------------------------
>>
>> End of kictanet Digest, Vol 109, Issue 129
>> ******************************************
>>
>
>
> _______________________________________________
> kictanet mailing list
> kictanet at lists.kictanet.or.ke
> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>
> Unsubscribe or change your options at
> https://lists.kictanet.or.ke/mailman/options/kictanet/henry%40article19.org
>
> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
> for people and institutions interested and involved in ICT policy and
> regulation. The network aims to act as a catalyst for reform in the ICT
> sector in support of the national aim of ICT enabled growth and development.
>
> KICTANetiquette : Adhere to the same standards of acceptable behaviors
> online that you follow in real life: respect people's times and bandwidth,
> share knowledge, don't flame or abuse or personalize, respect privacy, do
> not spam, do not market your wares or qualifications.
>
> _______________________________________________
> kictanet mailing list
> kictanet at lists.kictanet.or.ke
> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>
> Unsubscribe or change your options at
> https://lists.kictanet.or.ke/mailman/options/kictanet/ephraim%40accessnow.org
>
> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
> for people and institutions interested and involved in ICT policy and
> regulation. The network aims to act as a catalyst for reform in the ICT
> sector in support of the national aim of ICT enabled growth and development.
>
> KICTANetiquette : Adhere to the same standards of acceptable behaviors
> online that you follow in real life: respect people's times and bandwidth,
> share knowledge, don't flame or abuse or personalize, respect privacy, do
> not spam, do not market your wares or qualifications.
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.kictanet.or.ke/pipermail/kictanet/attachments/20160630/cc547f4c/attachment.htm>
More information about the KICTANet
mailing list