I just had this conversation this week even NTSA Tims which was recently relsunched falls in this category.

I find it ludicrous that in this day and age with data privacy concerns and laws the http status quo remains. Lets not even get started on the cybersecurity risks therein.

Can the tech experts highlight why the transition seems "impossible " as I'm curious too.

On Fri, 19 Nov 2021, 10:30 am felista wangari via KICTANet, <kictanet@lists.kictanet.or.ke> wrote:
Hi Listers, 

I visit lots of Kenya government websites and I notice that a good number are http:// (not secure)  rather than https:// (secure). Especially sites where people are putting in their data for job applications and things like that (I had started tracking, but abandoned that project).

This morning I'm getting lots of messages asking me if the Kazi Mtaani portal http://kms.go.ke being launched this afternoon is legit. Young Kenyans who want to apply are worried that it could be a malicious site since it is not https://. 

I'm explaining that yes, it is a legitimate government website (it has been shared by various government officials) but that it didn't attend to digital security, just like many other government agency sites. 


Should we be having government websites collecting people's details using http:// and not https:// in 2021? 

How is the security protocol not baked in during the building of the sites? - I wonder about this a lot. 


Regards,
Felista Wangari
Incurably curious
Journalist/Editor (Health, gender, development, personal finance) 


_______________________________________________
KICTANet mailing list
KICTANet@lists.kictanet.or.ke
https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Twitter: http://twitter.com/kictanet
Facebook: https://www.facebook.com/KICTANet/

Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/mutheu%40khimulu.com


KICTANet is a multi-stakeholder Think Tank for people and institutions interested and involved in ICT policy and regulation. KICTANet is a catalyst for reform in the Information and Communication Technology sector. Its work is guided by four pillars of Policy Advocacy, Capacity Building, Research, and Stakeholder Engagement.

KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.

KICTANet - The Power of Communities, is Kenya's premier ICT policy engagement platform.