Dear Listers,

I can attest that there is an inter-agency team working on a Computer and Cybercrime Bill, 2016. I joined the team after we analysed a draft that was developed by the ODPP.  While a Zero draft is yet to be finalised. I know that we agreed that it will not address itself to hate speech issues. I was therefore taken aback by the CS Mucheru  position yesterday which seemed to make references to the 2014 Draft Bill developed by the ODPP other than the one being developed by the Inter-agency committee.  See a link to our analysis of the old 2014 Bill

https://www.article19.org/resources.php/resource/37652/en/kenya:-cybercrime-and-computer-related-crimes-bill

The inter- agency Bill is looking at five main areas/offences:

1. Unauthorised access including unauthorised disclosure of access codes/passwords;

2. Unauthorised interception and unauthorised interference

3. Computer fraud and forgery

4. Child pornography

5. Cyber-stalking and cyber bullying 

I undertake to make available the Draft Bill once a full version is a ready.

Kind regards

Henry

---

From: "Gideon via kictanet" <kictanet@lists.kictanet.or.ke>
To: henry@article19.org
Cc: "Gideon" <gideonrop@gmail.com>
Sent: Thursday, June 30, 2016 1:41:38 PM
Subject: [kictanet] Draft National ICT Policy Discussions Day 7 of 10: How to enhance Cybersecurity

Dear Listers,

Thank you for these moving inputs.

On today's important topic how to enhance Cybersecurity, i will zero in on the awareness of the end user. Most of the time the end user may not know that they are a subject of an attack and that boils down to the need for basic knowledge sharing on what constitutes a cyber attack and how to secure your own system from viruses, malware and lately ransomware among other attacks.

I believe many users need a constant reminder to update their system protections and also know what and where not to click, this could help a lot.

On the issue of privacy, i did a paper sometimes back on social media and privacy, and from my small survey, i discovered not many users of these platforms had read or knew about what their rights as regards privacy, personal data among other key implements.

Therefore again I call for constant efforts for awareness.

Kind regards

Gideon Rop

On Thu, Jun 30, 2016 at 1:07 PM, <kictanet-request@lists.kictanet.or.ke> wrote:

Send kictanet mailing list submissions to
        kictanet@lists.kictanet.or.ke

To subscribe or unsubscribe via the World Wide Web, visit
        https://lists.kictanet.or.ke/mailman/listinfo/kictanet
or, via email, send a message with subject or body 'help' to
        kictanet-request@lists.kictanet.or.ke

You can reach the person managing the list at
        kictanet-owner@lists.kictanet.or.ke

When replying, please edit your Subject line so it is more specific
than "Re: Contents of kictanet digest..."


Today's Topics:

   1. Re: Draft National ICT Policy Discussions Day 7 of 10: How to
      enhance Cybersecurity (Sam Oduor)
   2. Re: Draft National ICT Policy Discussions Day 7 of 10: How to
      enhance Cybersecurity (Barrack Otieno)
   3. Re: Draft National ICT Policy Discussions Day 7 of 10: How to
      enhance Cybersecurity (Ali Hussein)


----------------------------------------------------------------------

Message: 1
Date: Thu, 30 Jun 2016 12:41:32 +0300
From: Sam Oduor <sam.oduor@gmail.com>
To: KICTAnet ICT Policy Discussions <kictanet@lists.kictanet.or.ke>
Subject: Re: [kictanet] Draft National ICT Policy Discussions Day 7 of
        10: How to enhance Cybersecurity
Message-ID:
        <CAFwHH1YBYJwYQyYtCihg=UdjzPuQduXgeRTpnAbQy8CdTDoyUQ@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"

Hi Barrack

A great comment has been posted on the Jadii Platform

June Tessy - a day ago Do we really need another 'specialized' agency yet
there are already existing units in Government and Regulators that are
mandated to deal with these like the National Intelligence Service, ICTA,
CA Perhaps building onto the already existing units in terms of resources
and capacity may be more sustainable


On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet <
kictanet@lists.kictanet.or.ke> wrote:

> Listers,
>
> Many thanks to those who contribued to day 6 discussions. The thread
> is still open, we also encourage listers to edit the policy directly
> on the Jadili platform
> (http://jadili.ictpolicy.org/docs/kenya-ict-policy).
>
> Today we focus on the following areas:
>
>
> *Online Citizen Safety,
> *Child Protection
> *Privacy issues
> *Security business transactions (Info-Security)
> *Security & Reliability of Critical ICT infrastructure
>
> The Background:
>
> The more we automate and rely on digital services, the more vulnerable
> we become as a  society to cybercrime and other threats facing the
> digital society.
>
> The regulator has a Computer Emergency Response Team (CERT), the
> industry (TESPOK) also has a CERT, the  Department  of Criminal
> Investigation & National Intelligence also have CERT. What is not
> clear is whether  there is a framework to have these teams working
> together and their capacity to counter a full-blown cyber attack
> against our digital national assets.
>
> Additionally, the tension between citizen privacy and national
> security, citizen privacy and business (profit) concerns remain
> perhaps due to lack of Data Protection, eTransaction and other laws.
> Finally, special protection for vulnerable groups (children) going
> online is non-existent.
>
> What needs to be done around these issues?
>
> Kindly submit your views.
>
> Best Regards
>
> --
> Barrack O. Otieno
> +254721325277
> +254733206359
> Skype: barrack.otieno
> PGP ID: 0x2611D86A
>
> _______________________________________________
> kictanet mailing list
> kictanet@lists.kictanet.or.ke
> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>
> Unsubscribe or change your options at
> https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
>
> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
> for people and institutions interested and involved in ICT policy and
> regulation. The network aims to act as a catalyst for reform in the ICT
> sector in support of the national aim of ICT enabled growth and development.
>
> KICTANetiquette : Adhere to the same standards of acceptable behaviors
> online that you follow in real life: respect people's times and bandwidth,
> share knowledge, don't flame or abuse or personalize, respect privacy, do
> not spam, do not market your wares or qualifications.
>



--
Samson Oduor
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.kictanet.or.ke/pipermail/kictanet/attachments/20160630/7ab9d756/attachment-0001.html>

------------------------------

Message: 2
Date: Thu, 30 Jun 2016 12:52:48 +0300
From: Barrack Otieno <otieno.barrack@gmail.com>
To: Sam Oduor <sam.oduor@gmail.com>
Cc: KICTAnet ICT Policy Discussions <kictanet@lists.kictanet.or.ke>
Subject: Re: [kictanet] Draft National ICT Policy Discussions Day 7 of
        10: How to enhance Cybersecurity
Message-ID:
        <CAKX6dsG6KXHwj5Km37NCJJv=u32SmwyCiSzuZ8eSmmTov_2CZQ@mail.gmail.com>
Content-Type: text/plain; charset=UTF-8

Great thanks Sam,

We will collate all the comments and forwad them to the Ministry.

Thank you

Best Regards

On 6/30/16, Sam Oduor <sam.oduor@gmail.com> wrote:
> Hi Barrack
>
> A great comment has been posted on the Jadii Platform
>
> June Tessy - a day ago Do we really need another 'specialized' agency yet
> there are already existing units in Government and Regulators that are
> mandated to deal with these like the National Intelligence Service, ICTA,
> CA Perhaps building onto the already existing units in terms of resources
> and capacity may be more sustainable
>
>
> On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet <
> kictanet@lists.kictanet.or.ke> wrote:
>
>> Listers,
>>
>> Many thanks to those who contribued to day 6 discussions. The thread
>> is still open, we also encourage listers to edit the policy directly
>> on the Jadili platform
>> (http://jadili.ictpolicy.org/docs/kenya-ict-policy).
>>
>> Today we focus on the following areas:
>>
>>
>> *Online Citizen Safety,
>> *Child Protection
>> *Privacy issues
>> *Security business transactions (Info-Security)
>> *Security & Reliability of Critical ICT infrastructure
>>
>> The Background:
>>
>> The more we automate and rely on digital services, the more vulnerable
>> we become as a  society to cybercrime and other threats facing the
>> digital society.
>>
>> The regulator has a Computer Emergency Response Team (CERT), the
>> industry (TESPOK) also has a CERT, the  Department  of Criminal
>> Investigation & National Intelligence also have CERT. What is not
>> clear is whether  there is a framework to have these teams working
>> together and their capacity to counter a full-blown cyber attack
>> against our digital national assets.
>>
>> Additionally, the tension between citizen privacy and national
>> security, citizen privacy and business (profit) concerns remain
>> perhaps due to lack of Data Protection, eTransaction and other laws.
>> Finally, special protection for vulnerable groups (children) going
>> online is non-existent.
>>
>> What needs to be done around these issues?
>>
>> Kindly submit your views.
>>
>> Best Regards
>>
>> --
>> Barrack O. Otieno
>> +254721325277
>> +254733206359
>> Skype: barrack.otieno
>> PGP ID: 0x2611D86A
>>
>> _______________________________________________
>> kictanet mailing list
>> kictanet@lists.kictanet.or.ke
>> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>>
>> Unsubscribe or change your options at
>> https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
>>
>> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
>> for people and institutions interested and involved in ICT policy and
>> regulation. The network aims to act as a catalyst for reform in the ICT
>> sector in support of the national aim of ICT enabled growth and
>> development.
>>
>> KICTANetiquette : Adhere to the same standards of acceptable behaviors
>> online that you follow in real life: respect people's times and
>> bandwidth,
>> share knowledge, don't flame or abuse or personalize, respect privacy, do
>> not spam, do not market your wares or qualifications.
>>
>
>
>
> --
> Samson Oduor
>


--
Barrack O. Otieno
+254721325277
+254733206359
Skype: barrack.otieno
PGP ID: 0x2611D86A



------------------------------

Message: 3
Date: Thu, 30 Jun 2016 13:03:45 +0300
From: Ali Hussein <ali@hussein.me.ke>
To: KICTAnet ICT Policy Discussions <kictanet@lists.kictanet.or.ke>
Subject: Re: [kictanet] Draft National ICT Policy Discussions Day 7 of
        10: How to enhance Cybersecurity
Message-ID: <EA30E4BA-9121-4085-84C5-61C532BA527A@hussein.me.ke>
Content-Type: text/plain; charset="utf-8"

All

In relation to this, I discovered today that a lot of the privacy issues are allegedly being violated by a certain global brand.

Google, could have a record of everything you have said around it for years, and you can listen to it yourself.

The company quietly records many of the conversations that people have around its products.

The feature works as a way of letting people search with their voice, and storing those recordings presumably lets Google improve its language recognition tools as well as the results that it gives to people.

Read on:-

http://www.independent.co.uk/life-style/gadgets-and-tech/news/google-voice-search-records-and-stores-conversation-people-have-around-their-phones-but-files-can-be-a7059376.html

In relation to this discussion we would love to have a comment from the Ministry and Google.

Ali Hussein
Principal
Hussein & Associates
+254 0713 601113 / 0770906375

Twitter: @AliHKassim
Skype: abu-jomo
LinkedIn: http://ke.linkedin.com/in/alihkassim


"Discovery consists in seeing what everyone else has seen and thinking what no one else has thought".  ~ Albert Szent-Gy?rgyi

Sent from my iPad

> On 30 Jun 2016, at 12:52 PM, Barrack Otieno via kictanet <kictanet@lists.kictanet.or.ke> wrote:
>
> Great thanks Sam,
>
> We will collate all the comments and forwad them to the Ministry.
>
> Thank you
>
> Best Regards
>
>> On 6/30/16, Sam Oduor <sam.oduor@gmail.com> wrote:
>> Hi Barrack
>>
>> A great comment has been posted on the Jadii Platform
>>
>> June Tessy - a day ago Do we really need another 'specialized' agency yet
>> there are already existing units in Government and Regulators that are
>> mandated to deal with these like the National Intelligence Service, ICTA,
>> CA Perhaps building onto the already existing units in terms of resources
>> and capacity may be more sustainable
>>
>>
>> On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet <
>> kictanet@lists.kictanet.or.ke> wrote:
>>
>>> Listers,
>>>
>>> Many thanks to those who contribued to day 6 discussions. The thread
>>> is still open, we also encourage listers to edit the policy directly
>>> on the Jadili platform
>>> (http://jadili.ictpolicy.org/docs/kenya-ict-policy).
>>>
>>> Today we focus on the following areas:
>>>
>>>
>>> *Online Citizen Safety,
>>> *Child Protection
>>> *Privacy issues
>>> *Security business transactions (Info-Security)
>>> *Security & Reliability of Critical ICT infrastructure
>>>
>>> The Background:
>>>
>>> The more we automate and rely on digital services, the more vulnerable
>>> we become as a  society to cybercrime and other threats facing the
>>> digital society.
>>>
>>> The regulator has a Computer Emergency Response Team (CERT), the
>>> industry (TESPOK) also has a CERT, the  Department  of Criminal
>>> Investigation & National Intelligence also have CERT. What is not
>>> clear is whether  there is a framework to have these teams working
>>> together and their capacity to counter a full-blown cyber attack
>>> against our digital national assets.
>>>
>>> Additionally, the tension between citizen privacy and national
>>> security, citizen privacy and business (profit) concerns remain
>>> perhaps due to lack of Data Protection, eTransaction and other laws.
>>> Finally, special protection for vulnerable groups (children) going
>>> online is non-existent.
>>>
>>> What needs to be done around these issues?
>>>
>>> Kindly submit your views.
>>>
>>> Best Regards
>>>
>>> --
>>> Barrack O. Otieno
>>> +254721325277
>>> +254733206359
>>> Skype: barrack.otieno
>>> PGP ID: 0x2611D86A
>>>
>>> _______________________________________________
>>> kictanet mailing list
>>> kictanet@lists.kictanet.or.ke
>>> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>>>
>>> Unsubscribe or change your options at
>>> https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
>>>
>>> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
>>> for people and institutions interested and involved in ICT policy and
>>> regulation. The network aims to act as a catalyst for reform in the ICT
>>> sector in support of the national aim of ICT enabled growth and
>>> development.
>>>
>>> KICTANetiquette : Adhere to the same standards of acceptable behaviors
>>> online that you follow in real life: respect people's times and
>>> bandwidth,
>>> share knowledge, don't flame or abuse or personalize, respect privacy, do
>>> not spam, do not market your wares or qualifications.
>>
>>
>>
>> --
>> Samson Oduor
>
>
> --
> Barrack O. Otieno
> +254721325277
> +254733206359
> Skype: barrack.otieno
> PGP ID: 0x2611D86A
>
> _______________________________________________
> kictanet mailing list
> kictanet@lists.kictanet.or.ke
> https://lists.kictanet.or.ke/mailman/listinfo/kictanet
>
> Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/info%40alyhussein.com
>
> The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.
>
> KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.kictanet.or.ke/pipermail/kictanet/attachments/20160630/45070d95/attachment.html>

------------------------------

Subject: Digest Footer

_______________________________________________
kictanet mailing list
kictanet@lists.kictanet.or.ke
https://lists.kictanet.or.ke/mailman/listinfo/kictanet


------------------------------

End of kictanet Digest, Vol 109, Issue 129
******************************************

_______________________________________________
kictanet mailing list
kictanet@lists.kictanet.or.ke
https://lists.kictanet.or.ke/mailman/listinfo/kictanet

Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/henry%40article19.org

The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.

KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.

_______________________________________________
kictanet mailing list
kictanet@lists.kictanet.or.ke
https://lists.kictanet.or.ke/mailman/listinfo/kictanet

Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/ephraim%40accessnow.org

The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.

KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.