<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40"><head><META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=us-ascii"><meta name=Generator content="Microsoft Word 14 (filtered medium)"><style><!--
/* Font Definitions */
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:"Calibri","sans-serif";
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri","sans-serif";}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]--></head><body lang=EN-US link=blue vlink=purple><div class=WordSection1><p class=MsoNormal>So I have been watching and reading the debate on thin-sim and the drama got me thinking about something….<o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p><p class=MsoNormal><span style='color:#1F497D'>Almost every Kenyan bank today is running a USSD mobile banking service. When you dial that number (eg *111#) ….and you enter your PIN to transact….. your PIN is transported between your phone and your bank in an open text (clear text aka no encryption) that can be read easily. I am sure both Safaricom and Equity know this for a fact. With this understanding, is the thin-sim card discussion really about the security for consumer or is it market-share politics? Can the two companies not find a secure work around if it really is about security? Imagine if CCK / Central Bank had refused MPESA citing consumer security because they could tell of the many mpesa fraudsters reported daily.<o:p></o:p></span></p><p class=MsoNormal><span style='color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='color:#1F497D'>Further, can CCK not “order” safaricom to open their sim card (subject to commercial terms) for more SimToolkit applications in which case Equity Mobile Money services would sit right next to MPESA menu on that same sim card (and perhaps there would have been no need for a new MVNO – ok so am being too ambitious!).<o:p></o:p></span></p><p class=MsoNormal><span style='color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='color:#1F497D'>Isn’t the big deal Equity’s desire to enter the Mobile Money market and for those following closely, you know the difference between “M-Shwari” and the now almost dead “M-Kesho”<o:p></o:p></span></p><p class=MsoNormal><span style='color:#1F497D'><o:p> </o:p></span></p><p class=MsoNormal><span style='color:#1F497D'>What are your thoughts?</span><o:p></o:p></p><p class=MsoNormal><o:p> </o:p></p></div></body></html>
<br>
<div align="center" style="text-align:center"><strong><span>
<hr size="2" width="100%" align="center">
</span></strong></div><p style="line-height:115%"><img src="http://bernsoft.com/img/logo.jpg"><span style="background-color:white;font-family:Georgia,serif;font-size:9pt;line-height:115%"><br><br>This e-mail and
any attachments may contain information that is confidential, legally
privileged and protected by law and is intended for the sole use of the named
recipient(s). Any unauthorized review, use, or disclosure or distribution is
prohibited. Any liability (in negligence or otherwise) arising from any third
party acting, or refraining from acting on any information contained in this
email is hereby excluded. If you are not the intended recipient, please delete
the contents and notify the sender immediately; do not disclose the contents to
any other person, use it for any purpose or store or copy the information in
any medium. Whilst our e-mails are checked for viruses, we cannot guarantee
that this message or any attachment is virus free, does not contain malicious
code or is incompatible with your electronic system and the Company does not
accept liability in respect of viruses, malicious code or any related problems
that you might experience. For further information about us, please contact us
at the address indicated below.</span></p><p style="line-height:115%"><span style="font-size:9pt;line-height:115%;font-family:Georgia,serif;background-color:white;background-repeat:initial initial"><br>Bernsoft Interactive Limited - P O Box 15177-00100 Nairobi - Tel: +254 722 929192 Email: <a href="mailto:admin@bernsoft.com" target="_blank">admin@bernsoft.com</a> Web: <a href="http://www.bernsoft.com" target="_blank">www.bernsoft.com</a>�</span></p>