Kenya IGF 2010, Discussions :Day 7 of 8 Theme:E-Crime, Online Privacy & Data Security- Continuation
Good Morning, As we near, closing these discussions we, feel free to contribute to the former threads by clicking on the correct subject/title. Today we continue with , - a) E-crime- situation in Kenya - b) E- Voting- where Kenya is @ And today we add c) c) Online privacy and data security i) Sim card registration- on the 21st June 2010 the government through CCK(Communication Commission of Kenya) declared it mandatory for all mobile users to register their Sim cards More info: http://www.cck.go.ke/news/2010/news_21june2010.html “The exercise is aimed at safeguarding the public against acts of insecurity, including the wide spread threats posed by terrorism, drug trafficking, money laundering, extortion, fraud, hate messages, and incitement that are now wide spread throughout the world, “said the Minister for Information and Communication. Currently we have 18million (I stand to be corrected ) mobile users in Kenya, In these forms, one has to give their residential area , their identity card number, their birth information etc… That is a whole lot of data on Kenyans… in short , a grand database! From yesterday’s discussions we saw that currently we have no LAW to guard this database. Q. What will stop the Authority from using my details wrongly? Q. What happens if I don’t register by 31st of July? I will be disconnected? Under what LAW? ii) When I send a SMS to 3007 with an ID card number, it returns with voter details, full names, place of voting and voter card number of the ID card holder, however, 1, the system put in place, does not verify in any way that it’s the real owner of the ID card, that has sent this query? a) Can this data be manipulated? Then what? A question, on top of my head, with all these ongoing, what creates demand for LAW?(if there is anything, like that) Your queries, comments, inputs, corrections are welcome! Kind Regards, -- “To live is to choose. But to choose well, you must know who you are and what you stand for, where you want to go and why you want to get there.” Kofi Annan
i) Sim card registration 1. Where is this database located? Is it at the private companies (Telecos) or some government office? 2. Do the police have the hardware and software to cheaply, efficiently and conviniently access the data? Who within the police authorizes access to such data? What measures are there to prevent an authorized person viewing the data from abusing it because now the person not only sees numbers, but knows the names and residential addresses of people contacting a particular number. 3. Why give an ID number and birth info, yet this birth info was used when getting the ID? It seems the govenment needs to put it's data in order. --- On Tue, 7/13/10, Judy Okite <[email protected]> wrote: From: Judy Okite <[email protected]> Subject: [Skunkworks] Kenya IGF 2010, Discussions :Day 7 of 8 Theme:E-Crime, Online Privacy & Data Security- Continuation To: "KICTAnet ICT Policy Discussions" <[email protected]>, "Skunkworks forum" <[email protected]> Date: Tuesday, July 13, 2010, 6:47 AM Good Morning, As we near, closing these discussions we, feel free to contribute to the former threads by clicking on the correct subject/title. Today we continue with , a) E-crime- situation in Kenyab) E- Voting- where Kenya is @ And today we add c) c) Online privacy and data security i) Sim card registration- on the 21st June 2010 the government through CCK(Communication Commission of Kenya) declared it mandatory for all mobile users to register their Sim cards More info: http://www.cck.go.ke/news/2010/news_21june2010.html “The exercise is aimed at safeguarding the public against acts of insecurity, including the wide spread threats posed by terrorism, drug trafficking, money laundering, extortion, fraud, hate messages, and incitement that are now wide spread throughout the world, “said the Minister for Information and Communication. Currently we have 18million (I stand to be corrected ) mobile users in Kenya, In these forms, one has to give their residential area , their identity card number, their birth information etc… That is a whole lot of data on Kenyans… in short , a grand database! From yesterday’s discussions we saw that currently we have no LAW to guard this database. Q. What will stop the Authority from using my details wrongly? Q. What happens if I don’t register by 31st of July? I will be disconnected? Under what LAW? ii) When I send a SMS to 3007 with an ID card number, it returns with voter details, full names, place of voting and voter card number of the ID card holder, however, 1, the system put in place, does not verify in any way that it’s the real owner of the ID card, that has sent this query? a) Can this data be manipulated? Then what? A question, on top of my head, with all these ongoing, what creates demand for LAW?(if there is anything, like that) Your queries, comments, inputs, corrections are welcome! Kind Regards, -- “To live is to choose. But to choose well, you must know who you are and what you stand for, where you want to go and why you want to get there.” Kofi Annan -----Inline Attachment Follows----- _______________________________________________ Skunkworks mailing list [email protected] http://orion.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Server donations spreadsheet http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1fbjAwOUE&hl=en ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
Listeners, I think the first thing would be to commend the innovation we are experiencing in our country. Who would have thought we would have such great ICT solutions today. Just two years ago you could not check about your voter registration credentials by sending a text message! (now to 3007), or get yellow pages access from 5991! We all agree that this comes with it's security limitations but this should be viewed as an opportunity to build secure systems that our government can benefit from. If we push it back to government the process of securing public online privileged information may take too long to get done. This now opens a new avenue for the private sector and perhaps a joint venture with government to build this secure systems we desire. In my humble view we should not be asking the question why this or why that but how can we make this better and more secure! On E-crime in Kenya I think this is a growing concern because typical e-crime would happen over the internet, accessed via a computer. In our situation internet access is mostly on the go. (On your hand held) You have access to your virtual bank (MPesa, MKesho, Zap, Yu Cash and others) and real bank. Should this interaction be compromised huge losses would follow. I have not yet heard of any groups or persons who have successfully compromised this systems but it's only a matter of time. However there are other forms of e-crime that is happening in the country where people harassed through their mobile phone or social networking sites. For more information on the local situation contact Alice on the forum to get access to the cyber crime against women in Kenya report. Sammy. On Tue, Jul 13, 2010 at 8:36 AM, wesley kirinya <[email protected]>wrote:
i) Sim card registration 1. Where is this database located? Is it at the private companies (Telecos) or some government office?
2. Do the police have the hardware and software to cheaply, efficiently and conviniently access the data? Who within the police authorizes access to such data? What measures are there to prevent an authorized person viewing the data from abusing it because now the person not only sees numbers, but knows the names and residential addresses of people contacting a particular number.
3. Why give an ID number and birth info, yet this birth info was used when getting the ID? It seems the govenment needs to put it's data in order.
--- On *Tue, 7/13/10, Judy Okite <[email protected]>* wrote:
From: Judy Okite <[email protected]> Subject: [Skunkworks] Kenya IGF 2010, Discussions :Day 7 of 8 Theme:E-Crime, Online Privacy & Data Security- Continuation To: "KICTAnet ICT Policy Discussions" <[email protected]>, "Skunkworks forum" <[email protected]> Date: Tuesday, July 13, 2010, 6:47 AM
Good Morning,
As we near, closing these discussions we, feel free to contribute to the former threads by clicking on the correct subject/title.
Today we continue with ,
- a) E-crime- situation in Kenya - b) E- Voting- where Kenya is @
And today we add
c) c) Online privacy and data security
i) Sim card registration- on the 21st June 2010 the government through CCK(Communication Commission of Kenya) declared it mandatory for all mobile users to register their Sim cards
More info: http://www.cck.go.ke/news/2010/news_21june2010.html
“The exercise is aimed at safeguarding the public against acts of insecurity, including the wide spread threats posed by terrorism, drug trafficking, money laundering, extortion, fraud, hate messages, and incitement that are now wide spread throughout the world, “said the Minister for Information and Communication.
Currently we have 18million (I stand to be corrected ) mobile users in Kenya, In these forms, one has to give their residential area , their identity card number, their birth information etc… That is a whole lot of data on Kenyans… in short , a grand database! From yesterday’s discussions we saw that currently we have no LAW to guard this database.
Q. What will stop the Authority from using my details wrongly?
Q. What happens if I don’t register by 31st of July? I will be disconnected? Under what LAW?
ii) When I send a SMS to 3007 with an ID card number, it returns with voter details, full names, place of voting and voter card number of the ID card holder, however,
1, the system put in place, does not verify in any way that it’s the real owner of the ID card, that has sent this query?
a) Can this data be manipulated? Then what?
A question, on top of my head, with all these ongoing, what creates demand for LAW?(if there is anything, like that)
Your queries, comments, inputs, corrections are welcome!
Kind Regards,
-- “To live is to choose. But to choose well, you must know who you are and what you stand for, where you want to go and why you want to get there.” Kofi Annan
-----Inline Attachment Follows-----
_______________________________________________ Skunkworks mailing list [email protected] <http://mc/[email protected]> http://orion.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Server donations spreadsheet
http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1fbjAwOUE&hl=en ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke
_______________________________________________ kictanet mailing list [email protected] http://lists.kictanet.or.ke/mailman/listinfo/kictanet
This message was sent to: [email protected] Unsubscribe or change your options at http://lists.kictanet.or.ke/mailman/options/kictanet/sam.gatere%40gmail.com
@wesley, the data on mobile registration is definately at the telcos...and in the absence of Data Protection Act which would define how that data is to be used, secured and accessed we are indeed at the mercy of the Telcos. Put more vividly, here is what I could (maliciously) do with data at the telcos(or even in government) in the absence of legal protection. 1. I could sell the data to foreign marketing companys (some marketing companies are willing to pay 1Ksh per record and if you have 18million records you can see the tempting mathematics) 2. I can profile any user - now that I can match his mobile n0 to a national ID - I can see from my data that user X, call him Kamau, lives in Kayole, sends money every month to user Y in Muranga(is that the mom?), regularly calls user Z (call her Akinyi) and every weekend X & Y mobile phones seem to spend more time geographically together in a location other than Kayole (hope its the wife? ;-)....what's more if i work in one of the Telco's i could open a "silent" investigation firm to sell this type of intelligence to many kenyan couples that are suspicious of each other...or even to Government authorities who wish to illegally access and profile data on political/economic competitors. 3. Without sufficent safeguards, I could match telco data to banking data and/or medical data and create a more complete picture of any citizen. Imagine you showing up for a Job Interview and the folks on the panel know in advance: (a) your not so innocent internet browsing habits, (b) your broke financial status and (c) your ailing kidney/blood pressure problem. ..and there you are trying to look extremely important and indespensible.. 4. the list can be endless... walu. --- On Tue, 7/13/10, wesley kirinya <[email protected]> wrote: From: wesley kirinya <[email protected]> Subject: Re: [kictanet] [Skunkworks] Kenya IGF 2010, Discussions :Day 7 of 8 Theme:E-Crime, Online Privacy & Data Security- Continuation To: [email protected] Cc: "KICTAnet ICT Policy Discussions" <[email protected]> Date: Tuesday, July 13, 2010, 9:36 AM i) Sim card registration 1. Where is this database located? Is it at the private companies (Telecos) or some government office? 2. Do the police have the hardware and software to cheaply, efficiently and conviniently access the data? Who within the police authorizes access to such data? What measures are there to prevent an authorized person viewing the data from abusing it because now the person not only sees numbers, but knows the names and residential addresses of people contacting a particular number. 3. Why give an ID number and birth info, yet this birth info was used when getting the ID? It seems the govenment needs to put it's data in order. --- On Tue, 7/13/10, Judy Okite <[email protected]> wrote: From: Judy Okite <[email protected]> Subject: [Skunkworks] Kenya IGF 2010, Discussions :Day 7 of 8 Theme:E-Crime, Online Privacy & Data Security- Continuation To: "KICTAnet ICT Policy Discussions" <[email protected]>, "Skunkworks forum" <[email protected]> Date: Tuesday, July 13, 2010, 6:47 AM Good Morning, As we near, closing these discussions we, feel free to contribute to the former threads by clicking on the correct subject/title. Today we continue with , a) E-crime- situation in Kenya b) E- Voting- where Kenya is @ And today we add c) c) Online privacy and data security i) Sim card registration- on the 21st June 2010 the government through CCK(Communication Commission of Kenya) declared it mandatory for all mobile users to register their Sim cards More info: http://www.cck.go.ke/news/2010/news_21june2010.html “The exercise is aimed at safeguarding the public against acts of insecurity, including the wide spread threats posed by terrorism, drug trafficking, money laundering, extortion, fraud, hate messages, and incitement that are now wide spread throughout the world, “said the Minister for Information and Communication. Currently we have 18million (I stand to be corrected ) mobile users in Kenya, In these forms, one has to give their residential area , their identity card number, their birth information etc… That is a whole lot of data on Kenyans… in short , a grand database! From yesterday’s discussions we saw that currently we have no LAW to guard this database. Q. What will stop the Authority from using my details wrongly? Q. What happens if I don’t register by 31st of July? I will be disconnected? Under what LAW? ii) When I send a SMS to 3007 with an ID card number, it returns with voter details, full names, place of voting and voter card number of the ID card holder, however, 1, the system put in place, does not verify in any way that it’s the real owner of the ID card, that has sent this query? a) Can this data be manipulated? Then what? A question, on top of my head, with all these ongoing, what creates demand for LAW?(if there is anything, like that) Your queries, comments, inputs, corrections are welcome! Kind Regards, -- “To live is to choose. But to choose well, you must know who you are and what you stand for, where you want to go and why you want to get there.” Kofi Annan -----Inline Attachment Follows----- _______________________________________________ Skunkworks mailing list [email protected] http://orion.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Server donations spreadsheet http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1fbjAwOUE&hl=en ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke -----Inline Attachment Follows----- _______________________________________________ kictanet mailing list [email protected] http://lists.kictanet.or.ke/mailman/listinfo/kictanet This message was sent to: [email protected] Unsubscribe or change your options at http://lists.kictanet.or.ke/mailman/options/kictanet/jwalu%40yahoo.com
Wallu Very good points however one puts this down to the chicken or egg syndrome The pace of technology and the possibilities one can do with data are so vast but also change at such a rate that by the time legislation is through there exists a totally new exploit. Our biggest challenge after the technology is Appropriate timely legislation Badru Sent from my® smartphone -----Original Message----- From: Walubengo J <[email protected]> Sender: [email protected] Date: Tue, 13 Jul 2010 01:49:27 To: <[email protected]> Cc: KICTAnet ICT Policy Discussions<[email protected]> Subject: Re: [kictanet] Kenya IGF 2010, Discussions :Day 7 of 8 Theme:E-Crime, Online Privacy & Data Security- Continuation _______________________________________________ kictanet mailing list [email protected] http://lists.kictanet.or.ke/mailman/listinfo/kictanet This message was sent to: [email protected] Unsubscribe or change your options at http://lists.kictanet.or.ke/mailman/options/kictanet/ntegeb%40one2net.co.ug
Walu, You bring to light very pertinent issues. I remember reading a case between two British Airline Companies where one company (took inappropriately (know what i mean)) the competitors customer data which i presume was stored in a database somewhere and gave the clients a counter offer. The case was of course settled by the courts with a Tidy sum of money as a lesson to many others with similar motives, this lends credence to your call for the data protection act. Thank you On Tue, Jul 13, 2010 at 1:17 PM, <[email protected]> wrote:
Wallu
Very good points however one puts this down to the chicken or egg syndrome
The pace of technology and the possibilities one can do with data are so vast but also change at such a rate that by the time legislation is through there exists a totally new exploit.
Our biggest challenge after the technology is Appropriate timely legislation
Badru Sent from my® smartphone
-----Original Message----- From: Walubengo J <[email protected]> Sender: [email protected] Date: Tue, 13 Jul 2010 01:49:27 To: <[email protected]> Cc: KICTAnet ICT Policy Discussions<[email protected]> Subject: Re: [kictanet] Kenya IGF 2010, Discussions :Day 7 of 8 Theme:E-Crime, Online Privacy & Data Security- Continuation
_______________________________________________ kictanet mailing list [email protected] http://lists.kictanet.or.ke/mailman/listinfo/kictanet
This message was sent to: [email protected] Unsubscribe or change your options at http://lists.kictanet.or.ke/mailman/options/kictanet/ntegeb%40one2net.co.ug
_______________________________________________ kictanet mailing list [email protected] http://lists.kictanet.or.ke/mailman/listinfo/kictanet
This message was sent to: [email protected] Unsubscribe or change your options at http://lists.kictanet.or.ke/mailman/options/kictanet/otieno.barrack%40gmail....
-- Barrack O. Otieno +41767892272 Skype: barrack.otieno
Hi Judy, When you brought up this issue, It quickly reminds me of a policy document which I read published by the GOK way back in 2004, i.e. NATIONAL INFORMATION & COMMUNICATIONS TECHNOLOGY (ICT) POLICY which recognized these emerging issues but the gava has lagged behind in put in place solutions (Laws) can safeguard us against these threats and this in effect means the this policy document is no longer a living doc. The question remains who is responsible... Of course I believe the min of Information & Communication is the line Min... are they overwhelmed or is it our legislators who are too busy increasing their salaries instead of passing Laws... Thanks Ayub On 13 July 2010 06:47, Judy Okite <[email protected]> wrote:
Good Morning,
As we near, closing these discussions we, feel free to contribute to the former threads by clicking on the correct subject/title.
Today we continue with ,
- a) E-crime- situation in Kenya - b) E- Voting- where Kenya is @
And today we add
c) c) Online privacy and data security
i) Sim card registration- on the 21st June 2010 the government through CCK(Communication Commission of Kenya) declared it mandatory for all mobile users to register their Sim cards
More info: http://www.cck.go.ke/news/2010/news_21june2010.html
“The exercise is aimed at safeguarding the public against acts of insecurity, including the wide spread threats posed by terrorism, drug trafficking, money laundering, extortion, fraud, hate messages, and incitement that are now wide spread throughout the world, “said the Minister for Information and Communication.
Currently we have 18million (I stand to be corrected ) mobile users in Kenya, In these forms, one has to give their residential area , their identity card number, their birth information etc… That is a whole lot of data on Kenyans… in short , a grand database! From yesterday’s discussions we saw that currently we have no LAW to guard this database.
Q. What will stop the Authority from using my details wrongly?
Q. What happens if I don’t register by 31st of July? I will be disconnected? Under what LAW?
ii) When I send a SMS to 3007 with an ID card number, it returns with voter details, full names, place of voting and voter card number of the ID card holder, however,
1, the system put in place, does not verify in any way that it’s the real owner of the ID card, that has sent this query?
a) Can this data be manipulated? Then what?
A question, on top of my head, with all these ongoing, what creates demand for LAW?(if there is anything, like that)
Your queries, comments, inputs, corrections are welcome!
Kind Regards,
-- “To live is to choose. But to choose well, you must know who you are and what you stand for, where you want to go and why you want to get there.” Kofi Annan
_______________________________________________ kictanet mailing list [email protected] http://lists.kictanet.or.ke/mailman/listinfo/kictanet
This message was sent to: [email protected] Unsubscribe or change your options at http://lists.kictanet.or.ke/mailman/options/kictanet/ayub.gitonga%40gmail.co...
-- Ayub Gitonga
Ayub, thank you, for your comment:-) ....I wish someone would answer that question.... bottom line, we are awesome innovaters, but what happens when crime is committed, do we want to wait till then, if they have not taken place? Still on the SIM card registration, there is no law that binds me to Register HURAY! Secondly, does this registration continue till after 30th? a case and scenario....someone is out of the country, they have been for the last month and will be back after 30th July...what happens to them? they get disconnected?then what? Kind Regards, On Tue, Jul 13, 2010 at 5:09 PM, Ayub Gitonga <[email protected]>wrote:
Hi Judy, When you brought up this issue, It quickly reminds me of a policy document which I read published by the GOK way back in 2004, i.e. NATIONAL INFORMATION & COMMUNICATIONS TECHNOLOGY (ICT) POLICY which recognized these emerging issues but the gava has lagged behind in put in place solutions (Laws) can safeguard us against these threats and this in effect means the this policy document is no longer a living doc.
The question remains who is responsible... Of course I believe the min of Information & Communication is the line Min... are they overwhelmed or is it our legislators who are too busy increasing their salaries instead of passing Laws...
Thanks Ayub
On 13 July 2010 06:47, Judy Okite <[email protected]> wrote:
Good Morning,
As we near, closing these discussions we, feel free to contribute to the former threads by clicking on the correct subject/title.
Today we continue with ,
- a) E-crime- situation in Kenya - b) E- Voting- where Kenya is @
And today we add
c) c) Online privacy and data security
i) Sim card registration- on the 21st June 2010 the government through CCK(Communication Commission of Kenya) declared it mandatory for all mobile users to register their Sim cards
More info: http://www.cck.go.ke/news/2010/news_21june2010.html
“The exercise is aimed at safeguarding the public against acts of insecurity, including the wide spread threats posed by terrorism, drug trafficking, money laundering, extortion, fraud, hate messages, and incitement that are now wide spread throughout the world, “said the Minister for Information and Communication.
Currently we have 18million (I stand to be corrected ) mobile users in Kenya, In these forms, one has to give their residential area , their identity card number, their birth information etc… That is a whole lot of data on Kenyans… in short , a grand database! From yesterday’s discussions we saw that currently we have no LAW to guard this database.
Q. What will stop the Authority from using my details wrongly?
Q. What happens if I don’t register by 31st of July? I will be disconnected? Under what LAW?
ii) When I send a SMS to 3007 with an ID card number, it returns with voter details, full names, place of voting and voter card number of the ID card holder, however,
1, the system put in place, does not verify in any way that it’s the real owner of the ID card, that has sent this query?
a) Can this data be manipulated? Then what?
A question, on top of my head, with all these ongoing, what creates demand for LAW?(if there is anything, like that)
Your queries, comments, inputs, corrections are welcome!
Kind Regards,
-- “To live is to choose. But to choose well, you must know who you are and what you stand for, where you want to go and why you want to get there.” Kofi Annan
_______________________________________________ kictanet mailing list [email protected] http://lists.kictanet.or.ke/mailman/listinfo/kictanet
This message was sent to: [email protected] Unsubscribe or change your options at http://lists.kictanet.or.ke/mailman/options/kictanet/ayub.gitonga%40gmail.co...
-- Ayub Gitonga
-- “To live is to choose. But to choose well, you must know who you are and what you stand for, where you want to go and why you want to get there.” Kofi Annan
Ayub, May be there could be away to register online. In that case someone can register from any where. If there is none, as far as I know....then truly the condition need to be considered and adjustment made accordingly. Regards, Okech JMMy blog --- On Tue, 7/13/10, Judy Okite <[email protected]> wrote: From: Judy Okite <[email protected]> Subject: Re: [kictanet] Kenya IGF 2010, Discussions :Day 7 of 8 Theme:E-Crime, Online Privacy & Data Security- Continuation To: [email protected] Cc: "KICTAnet ICT Policy Discussions" <[email protected]> Date: Tuesday, July 13, 2010, 8:28 AM Ayub, thank you, for your comment:-) ....I wish someone would answer that question.... bottom line, we are awesome innovaters, but what happens when crime is committed, do we want to wait till then, if they have not taken place? Still on the SIM card registration, there is no law that binds me to Register HURAY! Secondly, does this registration continue till after 30th? a case and scenario....someone is out of the country, they have been for the last month and will be back after 30th July...what happens to them? they get disconnected?then what? Kind Regards, On Tue, Jul 13, 2010 at 5:09 PM, Ayub Gitonga <[email protected]> wrote: Hi Judy,When you brought up this issue, It quickly reminds me of a policy document which I read published by the GOK way back in 2004, i.e. NATIONAL INFORMATION & COMMUNICATIONS TECHNOLOGY (ICT) POLICY which recognized these emerging issues but the gava has lagged behind in put in place solutions (Laws) can safeguard us against these threats and this in effect means the this policy document is no longer a living doc. The question remains who is responsible... Of course I believe the min of Information & Communication is the line Min... are they overwhelmed or is it our legislators who are too busy increasing their salaries instead of passing Laws... Thanks Ayub On 13 July 2010 06:47, Judy Okite <[email protected]> wrote: Good Morning, As we near, closing these discussions we, feel free to contribute to the former threads by clicking on the correct subject/title. Today we continue with , a) E-crime- situation in Kenyab) E- Voting- where Kenya is @ And today we add c) c) Online privacy and data security i) Sim card registration- on the 21st June 2010 the government through CCK(Communication Commission of Kenya) declared it mandatory for all mobile users to register their Sim cards More info: http://www.cck.go.ke/news/2010/news_21june2010.html “The exercise is aimed at safeguarding the public against acts of insecurity, including the wide spread threats posed by terrorism, drug trafficking, money laundering, extortion, fraud, hate messages, and incitement that are now wide spread throughout the world, “said the Minister for Information and Communication. Currently we have 18million (I stand to be corrected ) mobile users in Kenya, In these forms, one has to give their residential area , their identity card number, their birth information etc… That is a whole lot of data on Kenyans… in short , a grand database! From yesterday’s discussions we saw that currently we have no LAW to guard this database. Q. What will stop the Authority from using my details wrongly? Q. What happens if I don’t register by 31st of July? I will be disconnected? Under what LAW? ii) When I send a SMS to 3007 with an ID card number, it returns with voter details, full names, place of voting and voter card number of the ID card holder, however, 1, the system put in place, does not verify in any way that it’s the real owner of the ID card, that has sent this query? a) Can this data be manipulated? Then what? A question, on top of my head, with all these ongoing, what creates demand for LAW?(if there is anything, like that) Your queries, comments, inputs, corrections are welcome! Kind Regards, -- “To live is to choose. But to choose well, you must know who you are and what you stand for, where you want to go and why you want to get there.” Kofi Annan _______________________________________________ kictanet mailing list [email protected] http://lists.kictanet.or.ke/mailman/listinfo/kictanet This message was sent to: [email protected] Unsubscribe or change your options at http://lists.kictanet.or.ke/mailman/options/kictanet/ayub.gitonga%40gmail.co... -- Ayub Gitonga -- “To live is to choose. But to choose well, you must know who you are and what you stand for, where you want to go and why you want to get there.” Kofi Annan -----Inline Attachment Follows----- _______________________________________________ kictanet mailing list [email protected] http://lists.kictanet.or.ke/mailman/listinfo/kictanet This message was sent to: [email protected] Unsubscribe or change your options at http://lists.kictanet.or.ke/mailman/options/kictanet/okechjr%40yahoo.com
--- On Tue, 7/13/10, Judy Okite <[email protected]> wrote: Still on the SIM card registration, there is no law that binds me to Register HURAY! @Judy, Am not a "learned -friend" but If I was @ CCK I would not go the "Law" way to bind users on registration. I could achieve the same thing through gazettement of regulations. However they probably know something I dont because their (CCK) adverts on the issue keeps talking of putting a law in place to do this.. walu. --- On Tue, 7/13/10, Judy Okite <[email protected]> wrote: From: Judy Okite <[email protected]> Subject: Re: [kictanet] Kenya IGF 2010, Discussions :Day 7 of 8 Theme:E-Crime, Online Privacy & Data Security- Continuation To: [email protected] Cc: "KICTAnet ICT Policy Discussions" <[email protected]> Date: Tuesday, July 13, 2010, 7:28 PM Ayub, thank you, for your comment:-) ....I wish someone would answer that question.... bottom line, we are awesome innovaters, but what happens when crime is committed, do we want to wait till then, if they have not taken place? Still on the SIM card registration, there is no law that binds me to Register HURAY! Secondly, does this registration continue till after 30th? a case and scenario....someone is out of the country, they have been for the last month and will be back after 30th July...what happens to them? they get disconnected?then what? Kind Regards, On Tue, Jul 13, 2010 at 5:09 PM, Ayub Gitonga <[email protected]> wrote: Hi Judy,When you brought up this issue, It quickly reminds me of a policy document which I read published by the GOK way back in 2004, i.e. NATIONAL INFORMATION & COMMUNICATIONS TECHNOLOGY (ICT) POLICY which recognized these emerging issues but the gava has lagged behind in put in place solutions (Laws) can safeguard us against these threats and this in effect means the this policy document is no longer a living doc. The question remains who is responsible... Of course I believe the min of Information & Communication is the line Min... are they overwhelmed or is it our legislators who are too busy increasing their salaries instead of passing Laws... Thanks Ayub On 13 July 2010 06:47, Judy Okite <[email protected]> wrote: Good Morning, As we near, closing these discussions we, feel free to contribute to the former threads by clicking on the correct subject/title. Today we continue with , a) E-crime- situation in Kenyab) E- Voting- where Kenya is @ And today we add c) c) Online privacy and data security i) Sim card registration- on the 21st June 2010 the government through CCK(Communication Commission of Kenya) declared it mandatory for all mobile users to register their Sim cards More info: http://www.cck.go.ke/news/2010/news_21june2010.html “The exercise is aimed at safeguarding the public against acts of insecurity, including the wide spread threats posed by terrorism, drug trafficking, money laundering, extortion, fraud, hate messages, and incitement that are now wide spread throughout the world, “said the Minister for Information and Communication. Currently we have 18million (I stand to be corrected ) mobile users in Kenya, In these forms, one has to give their residential area , their identity card number, their birth information etc… That is a whole lot of data on Kenyans… in short , a grand database! From yesterday’s discussions we saw that currently we have no LAW to guard this database. Q. What will stop the Authority from using my details wrongly? Q. What happens if I don’t register by 31st of July? I will be disconnected? Under what LAW? ii) When I send a SMS to 3007 with an ID card number, it returns with voter details, full names, place of voting and voter card number of the ID card holder, however, 1, the system put in place, does not verify in any way that it’s the real owner of the ID card, that has sent this query? a) Can this data be manipulated? Then what? A question, on top of my head, with all these ongoing, what creates demand for LAW?(if there is anything, like that) Your queries, comments, inputs, corrections are welcome! Kind Regards, -- “To live is to choose. But to choose well, you must know who you are and what you stand for, where you want to go and why you want to get there.” Kofi Annan _______________________________________________ kictanet mailing list [email protected] http://lists.kictanet.or.ke/mailman/listinfo/kictanet This message was sent to: [email protected] Unsubscribe or change your options at http://lists.kictanet.or.ke/mailman/options/kictanet/ayub.gitonga%40gmail.co... -- Ayub Gitonga -- “To live is to choose. But to choose well, you must know who you are and what you stand for, where you want to go and why you want to get there.” Kofi Annan -----Inline Attachment Follows----- _______________________________________________ kictanet mailing list [email protected] http://lists.kictanet.or.ke/mailman/listinfo/kictanet This message was sent to: [email protected] Unsubscribe or change your options at http://lists.kictanet.or.ke/mailman/options/kictanet/jwalu%40yahoo.com
participants (8)
-
Ayub Gitonga -
Barrack Otieno -
Judy Okite -
ntegeb@one2net.co.ug -
Okech -
Sam Gatere -
Walubengo J -
wesley kirinya