Draft National ICT Policy Discussions Day 7 of 10: How to enhance Cybersecurity
Listers, Many thanks to those who contribued to day 6 discussions. The thread is still open, we also encourage listers to edit the policy directly on the Jadili platform (http://jadili.ictpolicy.org/docs/kenya-ict-policy). Today we focus on the following areas: *Online Citizen Safety, *Child Protection *Privacy issues *Security business transactions (Info-Security) *Security & Reliability of Critical ICT infrastructure The Background: The more we automate and rely on digital services, the more vulnerable we become as a society to cybercrime and other threats facing the digital society. The regulator has a Computer Emergency Response Team (CERT), the industry (TESPOK) also has a CERT, the Department of Criminal Investigation & National Intelligence also have CERT. What is not clear is whether there is a framework to have these teams working together and their capacity to counter a full-blown cyber attack against our digital national assets. Additionally, the tension between citizen privacy and national security, citizen privacy and business (profit) concerns remain perhaps due to lack of Data Protection, eTransaction and other laws. Finally, special protection for vulnerable groups (children) going online is non-existent. What needs to be done around these issues? Kindly submit your views. Best Regards -- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A
Hi Barrack A great comment has been posted on the Jadii Platform June Tessy - a day ago Do we really need another 'specialized' agency yet there are already existing units in Government and Regulators that are mandated to deal with these like the National Intelligence Service, ICTA, CA Perhaps building onto the already existing units in terms of resources and capacity may be more sustainable On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet < kictanet@lists.kictanet.or.ke> wrote:
Listers,
Many thanks to those who contribued to day 6 discussions. The thread is still open, we also encourage listers to edit the policy directly on the Jadili platform (http://jadili.ictpolicy.org/docs/kenya-ict-policy).
Today we focus on the following areas:
*Online Citizen Safety, *Child Protection *Privacy issues *Security business transactions (Info-Security) *Security & Reliability of Critical ICT infrastructure
The Background:
The more we automate and rely on digital services, the more vulnerable we become as a society to cybercrime and other threats facing the digital society.
The regulator has a Computer Emergency Response Team (CERT), the industry (TESPOK) also has a CERT, the Department of Criminal Investigation & National Intelligence also have CERT. What is not clear is whether there is a framework to have these teams working together and their capacity to counter a full-blown cyber attack against our digital national assets.
Additionally, the tension between citizen privacy and national security, citizen privacy and business (profit) concerns remain perhaps due to lack of Data Protection, eTransaction and other laws. Finally, special protection for vulnerable groups (children) going online is non-existent.
What needs to be done around these issues?
Kindly submit your views.
Best Regards
-- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A
_______________________________________________ kictanet mailing list kictanet@lists.kictanet.or.ke https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.
KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
-- Samson Oduor
Great thanks Sam, We will collate all the comments and forwad them to the Ministry. Thank you Best Regards On 6/30/16, Sam Oduor <sam.oduor@gmail.com> wrote:
Hi Barrack
A great comment has been posted on the Jadii Platform
June Tessy - a day ago Do we really need another 'specialized' agency yet there are already existing units in Government and Regulators that are mandated to deal with these like the National Intelligence Service, ICTA, CA Perhaps building onto the already existing units in terms of resources and capacity may be more sustainable
On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet < kictanet@lists.kictanet.or.ke> wrote:
Listers,
Many thanks to those who contribued to day 6 discussions. The thread is still open, we also encourage listers to edit the policy directly on the Jadili platform (http://jadili.ictpolicy.org/docs/kenya-ict-policy).
Today we focus on the following areas:
*Online Citizen Safety, *Child Protection *Privacy issues *Security business transactions (Info-Security) *Security & Reliability of Critical ICT infrastructure
The Background:
The more we automate and rely on digital services, the more vulnerable we become as a society to cybercrime and other threats facing the digital society.
The regulator has a Computer Emergency Response Team (CERT), the industry (TESPOK) also has a CERT, the Department of Criminal Investigation & National Intelligence also have CERT. What is not clear is whether there is a framework to have these teams working together and their capacity to counter a full-blown cyber attack against our digital national assets.
Additionally, the tension between citizen privacy and national security, citizen privacy and business (profit) concerns remain perhaps due to lack of Data Protection, eTransaction and other laws. Finally, special protection for vulnerable groups (children) going online is non-existent.
What needs to be done around these issues?
Kindly submit your views.
Best Regards
-- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A
_______________________________________________ kictanet mailing list kictanet@lists.kictanet.or.ke https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.
KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
-- Samson Oduor
-- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A
All In relation to this, I discovered today that a lot of the privacy issues are allegedly being violated by a certain global brand. Google, could have a record of everything you have said around it for years, and you can listen to it yourself. The company quietly records many of the conversations that people have around its products. The feature works as a way of letting people search with their voice, and storing those recordings presumably lets Google improve its language recognition tools as well as the results that it gives to people. Read on:- http://www.independent.co.uk/life-style/gadgets-and-tech/news/google-voice-s... In relation to this discussion we would love to have a comment from the Ministry and Google. Ali Hussein Principal Hussein & Associates +254 0713 601113 / 0770906375 Twitter: @AliHKassim Skype: abu-jomo LinkedIn: http://ke.linkedin.com/in/alihkassim "Discovery consists in seeing what everyone else has seen and thinking what no one else has thought". ~ Albert Szent-Györgyi Sent from my iPad
On 30 Jun 2016, at 12:52 PM, Barrack Otieno via kictanet <kictanet@lists.kictanet.or.ke> wrote:
Great thanks Sam,
We will collate all the comments and forwad them to the Ministry.
Thank you
Best Regards
On 6/30/16, Sam Oduor <sam.oduor@gmail.com> wrote: Hi Barrack
A great comment has been posted on the Jadii Platform
June Tessy - a day ago Do we really need another 'specialized' agency yet there are already existing units in Government and Regulators that are mandated to deal with these like the National Intelligence Service, ICTA, CA Perhaps building onto the already existing units in terms of resources and capacity may be more sustainable
On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet < kictanet@lists.kictanet.or.ke> wrote:
Listers,
Many thanks to those who contribued to day 6 discussions. The thread is still open, we also encourage listers to edit the policy directly on the Jadili platform (http://jadili.ictpolicy.org/docs/kenya-ict-policy).
Today we focus on the following areas:
*Online Citizen Safety, *Child Protection *Privacy issues *Security business transactions (Info-Security) *Security & Reliability of Critical ICT infrastructure
The Background:
The more we automate and rely on digital services, the more vulnerable we become as a society to cybercrime and other threats facing the digital society.
The regulator has a Computer Emergency Response Team (CERT), the industry (TESPOK) also has a CERT, the Department of Criminal Investigation & National Intelligence also have CERT. What is not clear is whether there is a framework to have these teams working together and their capacity to counter a full-blown cyber attack against our digital national assets.
Additionally, the tension between citizen privacy and national security, citizen privacy and business (profit) concerns remain perhaps due to lack of Data Protection, eTransaction and other laws. Finally, special protection for vulnerable groups (children) going online is non-existent.
What needs to be done around these issues?
Kindly submit your views.
Best Regards
-- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A
_______________________________________________ kictanet mailing list kictanet@lists.kictanet.or.ke https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.
KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
-- Samson Oduor
-- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A
_______________________________________________ kictanet mailing list kictanet@lists.kictanet.or.ke https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/info%40alyhussein.com
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.
KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
Quick one ; on the subject of data retention - can this be expounded with regards to duration, accessibility of retained data - how fast and also impact on budget for providers to meet the cost of retaining data. On Thu, Jun 30, 2016 at 1:03 PM, Ali Hussein via kictanet < kictanet@lists.kictanet.or.ke> wrote:
All
In relation to this, I discovered today that a lot of the privacy issues are allegedly being violated by a certain global brand.
Google, could have a record of everything you have said around it for years, and you can listen to it yourself.
The company quietly records many of the conversations that people have around its products.
The feature works as a way of letting people search with their voice, and storing those recordings presumably lets Google improve its language recognition tools as well as the results that it gives to people.
Read on:-
http://www.independent.co.uk/life-style/gadgets-and-tech/news/google-voice-s...
In relation to this discussion we would love to have a comment from the Ministry and Google.
*Ali Hussein* *Principal* *Hussein & Associates* +254 0713 601113 / 0770906375
Twitter: @AliHKassim
Skype: abu-jomo
LinkedIn: http://ke.linkedin.com/in/alihkassim
"Discovery consists in seeing what everyone else has seen and thinking what no one else has thought". ~ Albert Szent-Györgyi
Sent from my iPad
On 30 Jun 2016, at 12:52 PM, Barrack Otieno via kictanet < kictanet@lists.kictanet.or.ke> wrote:
Great thanks Sam,
We will collate all the comments and forwad them to the Ministry.
Thank you
Best Regards
On 6/30/16, Sam Oduor <sam.oduor@gmail.com> wrote:
Hi Barrack
A great comment has been posted on the Jadii Platform
June Tessy - a day ago Do we really need another 'specialized' agency yet
there are already existing units in Government and Regulators that are
mandated to deal with these like the National Intelligence Service, ICTA,
CA Perhaps building onto the already existing units in terms of resources
and capacity may be more sustainable
On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet <
kictanet@lists.kictanet.or.ke> wrote:
Listers,
Many thanks to those who contribued to day 6 discussions. The thread
is still open, we also encourage listers to edit the policy directly
on the Jadili platform
(http://jadili.ictpolicy.org/docs/kenya-ict-policy).
Today we focus on the following areas:
*Online Citizen Safety,
*Child Protection
*Privacy issues
*Security business transactions (Info-Security)
*Security & Reliability of Critical ICT infrastructure
The Background:
The more we automate and rely on digital services, the more vulnerable
we become as a society to cybercrime and other threats facing the
digital society.
The regulator has a Computer Emergency Response Team (CERT), the
industry (TESPOK) also has a CERT, the Department of Criminal
Investigation & National Intelligence also have CERT. What is not
clear is whether there is a framework to have these teams working
together and their capacity to counter a full-blown cyber attack
against our digital national assets.
Additionally, the tension between citizen privacy and national
security, citizen privacy and business (profit) concerns remain
perhaps due to lack of Data Protection, eTransaction and other laws.
Finally, special protection for vulnerable groups (children) going
online is non-existent.
What needs to be done around these issues?
Kindly submit your views.
Best Regards
--
Barrack O. Otieno
+254721325277
+254733206359
Skype: barrack.otieno
PGP ID: 0x2611D86A
_______________________________________________
kictanet mailing list
kictanet@lists.kictanet.or.ke
https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Unsubscribe or change your options at
https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
for people and institutions interested and involved in ICT policy and
regulation. The network aims to act as a catalyst for reform in the ICT
sector in support of the national aim of ICT enabled growth and
development.
KICTANetiquette : Adhere to the same standards of acceptable behaviors
online that you follow in real life: respect people's times and
bandwidth,
share knowledge, don't flame or abuse or personalize, respect privacy, do
not spam, do not market your wares or qualifications.
--
Samson Oduor
-- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A
_______________________________________________ kictanet mailing list kictanet@lists.kictanet.or.ke https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/info%40alyhussein.com
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.
KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
_______________________________________________ kictanet mailing list kictanet@lists.kictanet.or.ke https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.
KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
-- Samson Oduor
From the Ministry perspective I think their objective is quite clear on this - this is an extract of section 7.5; I have bolded out developing legislation which is a process and road-map they intend to take.
7.5 *Data Protection* The Government will *develop data protection legislation* that ensures the protection of the confidentiality and integrity of citizens’ information. The legislation shall provide for collection, use, retention, security and disclosure of such information, including disclosure to law enforcement agencies. I would not comment on Google because they operate in different Geographical boundaries with different legislations. On Thu, Jun 30, 2016 at 1:03 PM, Ali Hussein via kictanet < kictanet@lists.kictanet.or.ke> wrote:
All
In relation to this, I discovered today that a lot of the privacy issues are allegedly being violated by a certain global brand.
Google, could have a record of everything you have said around it for years, and you can listen to it yourself.
The company quietly records many of the conversations that people have around its products.
The feature works as a way of letting people search with their voice, and storing those recordings presumably lets Google improve its language recognition tools as well as the results that it gives to people.
Read on:-
http://www.independent.co.uk/life-style/gadgets-and-tech/news/google-voice-s...
In relation to this discussion we would love to have a comment from the Ministry and Google.
*Ali Hussein* *Principal* *Hussein & Associates* +254 0713 601113 / 0770906375
Twitter: @AliHKassim
Skype: abu-jomo
LinkedIn: http://ke.linkedin.com/in/alihkassim
"Discovery consists in seeing what everyone else has seen and thinking what no one else has thought". ~ Albert Szent-Györgyi
Sent from my iPad
On 30 Jun 2016, at 12:52 PM, Barrack Otieno via kictanet < kictanet@lists.kictanet.or.ke> wrote:
Great thanks Sam,
We will collate all the comments and forwad them to the Ministry.
Thank you
Best Regards
On 6/30/16, Sam Oduor <sam.oduor@gmail.com> wrote:
Hi Barrack
A great comment has been posted on the Jadii Platform
June Tessy - a day ago Do we really need another 'specialized' agency yet
there are already existing units in Government and Regulators that are
mandated to deal with these like the National Intelligence Service, ICTA,
CA Perhaps building onto the already existing units in terms of resources
and capacity may be more sustainable
On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet <
kictanet@lists.kictanet.or.ke> wrote:
Listers,
Many thanks to those who contribued to day 6 discussions. The thread
is still open, we also encourage listers to edit the policy directly
on the Jadili platform
(http://jadili.ictpolicy.org/docs/kenya-ict-policy).
Today we focus on the following areas:
*Online Citizen Safety,
*Child Protection
*Privacy issues
*Security business transactions (Info-Security)
*Security & Reliability of Critical ICT infrastructure
The Background:
The more we automate and rely on digital services, the more vulnerable
we become as a society to cybercrime and other threats facing the
digital society.
The regulator has a Computer Emergency Response Team (CERT), the
industry (TESPOK) also has a CERT, the Department of Criminal
Investigation & National Intelligence also have CERT. What is not
clear is whether there is a framework to have these teams working
together and their capacity to counter a full-blown cyber attack
against our digital national assets.
Additionally, the tension between citizen privacy and national
security, citizen privacy and business (profit) concerns remain
perhaps due to lack of Data Protection, eTransaction and other laws.
Finally, special protection for vulnerable groups (children) going
online is non-existent.
What needs to be done around these issues?
Kindly submit your views.
Best Regards
--
Barrack O. Otieno
+254721325277
+254733206359
Skype: barrack.otieno
PGP ID: 0x2611D86A
_______________________________________________
kictanet mailing list
kictanet@lists.kictanet.or.ke
https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Unsubscribe or change your options at
https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform
for people and institutions interested and involved in ICT policy and
regulation. The network aims to act as a catalyst for reform in the ICT
sector in support of the national aim of ICT enabled growth and
development.
KICTANetiquette : Adhere to the same standards of acceptable behaviors
online that you follow in real life: respect people's times and
bandwidth,
share knowledge, don't flame or abuse or personalize, respect privacy, do
not spam, do not market your wares or qualifications.
--
Samson Oduor
-- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A
_______________________________________________ kictanet mailing list kictanet@lists.kictanet.or.ke https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/info%40alyhussein.com
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.
KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
_______________________________________________ kictanet mailing list kictanet@lists.kictanet.or.ke https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.
KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
-- Samson Oduor
Hi Ali, Bearing in mind willing buyer, willing seller, don't you think there are clients who are happy with the current state of things? should we penalize businesses for infringement of rights that have been willingly waived by clients? On 6/30/16, Ali Hussein <ali@hussein.me.ke> wrote:
All
In relation to this, I discovered today that a lot of the privacy issues are allegedly being violated by a certain global brand.
Google, could have a record of everything you have said around it for years, and you can listen to it yourself.
The company quietly records many of the conversations that people have around its products.
The feature works as a way of letting people search with their voice, and storing those recordings presumably lets Google improve its language recognition tools as well as the results that it gives to people.
Read on:-
http://www.independent.co.uk/life-style/gadgets-and-tech/news/google-voice-s...
In relation to this discussion we would love to have a comment from the Ministry and Google.
Ali Hussein Principal Hussein & Associates +254 0713 601113 / 0770906375
Twitter: @AliHKassim Skype: abu-jomo LinkedIn: http://ke.linkedin.com/in/alihkassim
"Discovery consists in seeing what everyone else has seen and thinking what no one else has thought". ~ Albert Szent-Györgyi
Sent from my iPad
On 30 Jun 2016, at 12:52 PM, Barrack Otieno via kictanet <kictanet@lists.kictanet.or.ke> wrote:
Great thanks Sam,
We will collate all the comments and forwad them to the Ministry.
Thank you
Best Regards
On 6/30/16, Sam Oduor <sam.oduor@gmail.com> wrote: Hi Barrack
A great comment has been posted on the Jadii Platform
June Tessy - a day ago Do we really need another 'specialized' agency yet there are already existing units in Government and Regulators that are mandated to deal with these like the National Intelligence Service, ICTA, CA Perhaps building onto the already existing units in terms of resources and capacity may be more sustainable
On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet < kictanet@lists.kictanet.or.ke> wrote:
Listers,
Many thanks to those who contribued to day 6 discussions. The thread is still open, we also encourage listers to edit the policy directly on the Jadili platform (http://jadili.ictpolicy.org/docs/kenya-ict-policy).
Today we focus on the following areas:
*Online Citizen Safety, *Child Protection *Privacy issues *Security business transactions (Info-Security) *Security & Reliability of Critical ICT infrastructure
The Background:
The more we automate and rely on digital services, the more vulnerable we become as a society to cybercrime and other threats facing the digital society.
The regulator has a Computer Emergency Response Team (CERT), the industry (TESPOK) also has a CERT, the Department of Criminal Investigation & National Intelligence also have CERT. What is not clear is whether there is a framework to have these teams working together and their capacity to counter a full-blown cyber attack against our digital national assets.
Additionally, the tension between citizen privacy and national security, citizen privacy and business (profit) concerns remain perhaps due to lack of Data Protection, eTransaction and other laws. Finally, special protection for vulnerable groups (children) going online is non-existent.
What needs to be done around these issues?
Kindly submit your views.
Best Regards
-- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A
_______________________________________________ kictanet mailing list kictanet@lists.kictanet.or.ke https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.
KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
-- Samson Oduor
-- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A
_______________________________________________ kictanet mailing list kictanet@lists.kictanet.or.ke https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/info%40alyhussein.com
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.
KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
-- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A
Barrack I don't know about that. I'm curious, who on this list knew about this particular issue of storing our conversations? Maybe it was already hidden somewhere in the fine print of agreements but that's exactly the point. There's been a movement about simplifying these online agreements. Maybe it's time to push more for this? Ali Hussein Principal Hussein & Associates +254 0713 601113 / 0770906375 Twitter: @AliHKassim Skype: abu-jomo LinkedIn: http://ke.linkedin.com/in/alihkassim "Discovery consists in seeing what everyone else has seen and thinking what no one else has thought". ~ Albert Szent-Györgyi Sent from my iPad
On 1 Jul 2016, at 1:01 AM, Barrack Otieno <otieno.barrack@gmail.com> wrote:
Hi Ali,
Bearing in mind willing buyer, willing seller, don't you think there are clients who are happy with the current state of things? should we penalize businesses for infringement of rights that have been willingly waived by clients?
On 6/30/16, Ali Hussein <ali@hussein.me.ke> wrote: All
In relation to this, I discovered today that a lot of the privacy issues are allegedly being violated by a certain global brand.
Google, could have a record of everything you have said around it for years, and you can listen to it yourself.
The company quietly records many of the conversations that people have around its products.
The feature works as a way of letting people search with their voice, and storing those recordings presumably lets Google improve its language recognition tools as well as the results that it gives to people.
Read on:-
http://www.independent.co.uk/life-style/gadgets-and-tech/news/google-voice-s...
In relation to this discussion we would love to have a comment from the Ministry and Google.
Ali Hussein Principal Hussein & Associates +254 0713 601113 / 0770906375
Twitter: @AliHKassim Skype: abu-jomo LinkedIn: http://ke.linkedin.com/in/alihkassim
"Discovery consists in seeing what everyone else has seen and thinking what no one else has thought". ~ Albert Szent-Györgyi
Sent from my iPad
On 30 Jun 2016, at 12:52 PM, Barrack Otieno via kictanet <kictanet@lists.kictanet.or.ke> wrote:
Great thanks Sam,
We will collate all the comments and forwad them to the Ministry.
Thank you
Best Regards
On 6/30/16, Sam Oduor <sam.oduor@gmail.com> wrote: Hi Barrack
A great comment has been posted on the Jadii Platform
June Tessy - a day ago Do we really need another 'specialized' agency yet there are already existing units in Government and Regulators that are mandated to deal with these like the National Intelligence Service, ICTA, CA Perhaps building onto the already existing units in terms of resources and capacity may be more sustainable
On Thu, Jun 30, 2016 at 7:29 AM, Barrack Otieno via kictanet < kictanet@lists.kictanet.or.ke> wrote:
Listers,
Many thanks to those who contribued to day 6 discussions. The thread is still open, we also encourage listers to edit the policy directly on the Jadili platform (http://jadili.ictpolicy.org/docs/kenya-ict-policy).
Today we focus on the following areas:
*Online Citizen Safety, *Child Protection *Privacy issues *Security business transactions (Info-Security) *Security & Reliability of Critical ICT infrastructure
The Background:
The more we automate and rely on digital services, the more vulnerable we become as a society to cybercrime and other threats facing the digital society.
The regulator has a Computer Emergency Response Team (CERT), the industry (TESPOK) also has a CERT, the Department of Criminal Investigation & National Intelligence also have CERT. What is not clear is whether there is a framework to have these teams working together and their capacity to counter a full-blown cyber attack against our digital national assets.
Additionally, the tension between citizen privacy and national security, citizen privacy and business (profit) concerns remain perhaps due to lack of Data Protection, eTransaction and other laws. Finally, special protection for vulnerable groups (children) going online is non-existent.
What needs to be done around these issues?
Kindly submit your views.
Best Regards
-- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A
_______________________________________________ kictanet mailing list kictanet@lists.kictanet.or.ke https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/sam.oduor%40gmail.com
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.
KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
-- Samson Oduor
-- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A
_______________________________________________ kictanet mailing list kictanet@lists.kictanet.or.ke https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/info%40alyhussein.com
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.
KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
-- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A
Dear Listers, The scope, dynamics, and harm to organizations inflicted by cyber attacks have been intensively growing during the last years. The International community is uniting and seeking for cooperation in order to stop cyber-crimes. Join a network of over 200 inspiring business leaders for a business focused multi-stakeholder, knowledge sharing and networking platform at the 3rd Annual AfricaHackon convergence in security conference at Michael Joseph Centre on 28-29 July 2016 from 9:00 am - 5:00pm Register at https <https://goo.gl/ay6o3j>:// <https://goo.gl/ay6o3j>goo.gl <https://goo.gl/ay6o3j>/ay6o3j <https://goo.gl/ay6o3j> to book your space Tickets go for Ksh 5000 Corporate tickets Ksh 3000 Ordinary. Feel free to reach me on +254 (0) 710 719 693. And for more information on Africa Hackon http:// <http://africahackon.com/>africahackon.com/ <http://africahackon.com/> Proudly brought to you by Safaricom and Isols
As I read through the policy I wonder how much work has been done to link with other policies. For example, KEBS has been pushing for the adoption of ISO 27001 (Information Security Management Systems) standard by Kenyan Organizations. Applying a best practice like ISO 27001 would prevent organizations from having to reinvent the wheel. Regards, Alex -----Original Message----- From: kictanet [mailto:kictanet-bounces+awatila=yahoo.co.uk@lists.kictanet.or.ke] On Behalf Of Barrack Otieno via kictanet Sent: Thursday, June 30, 2016 7:29 AM To: awatila@yahoo.co.uk Cc: Barrack Otieno <otieno.barrack@gmail.com> Subject: [kictanet] Draft National ICT Policy Discussions Day 7 of 10: How to enhance Cybersecurity Listers, Many thanks to those who contribued to day 6 discussions. The thread is still open, we also encourage listers to edit the policy directly on the Jadili platform (http://jadili.ictpolicy.org/docs/kenya-ict-policy). Today we focus on the following areas: *Online Citizen Safety, *Child Protection *Privacy issues *Security business transactions (Info-Security) *Security & Reliability of Critical ICT infrastructure The Background: The more we automate and rely on digital services, the more vulnerable we become as a society to cybercrime and other threats facing the digital society. The regulator has a Computer Emergency Response Team (CERT), the industry (TESPOK) also has a CERT, the Department of Criminal Investigation & National Intelligence also have CERT. What is not clear is whether there is a framework to have these teams working together and their capacity to counter a full-blown cyber attack against our digital national assets. Additionally, the tension between citizen privacy and national security, citizen privacy and business (profit) concerns remain perhaps due to lack of Data Protection, eTransaction and other laws. Finally, special protection for vulnerable groups (children) going online is non-existent. What needs to be done around these issues? Kindly submit your views. Best Regards -- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A _______________________________________________ kictanet mailing list kictanet@lists.kictanet.or.ke https://lists.kictanet.or.ke/mailman/listinfo/kictanet Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/awatila%40yahoo.co.uk The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development. KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
I second you Gideon, especially on the awareness bit. Its worth noting that service providers (software, etc) in Kenya pay very little attention to providing content on Privacy Policy and upholding such policies - if ever they did develop them in the first place. The fact that end users have no idea they are entitled to privacy is not a small issue - its a big one. Its tied to consumer rights and abuse of these rights because there is no policy around it. I think policy needs to make any publicly available service provide a privacy policy at the least. And this should be applicable throughout the board - including on e-government sites and services. Civil society organizations should also be encouraged to train consumers on consumer rights and privacy. Because I know for a fact people outside these forums have no idea what it is really about. On Thu, Jun 30, 2016 at 4:31 PM, Alex Watila via kictanet < kictanet@lists.kictanet.or.ke> wrote:
As I read through the policy I wonder how much work has been done to link with other policies. For example, KEBS has been pushing for the adoption of ISO 27001 (Information Security Management Systems) standard by Kenyan Organizations.
Applying a best practice like ISO 27001 would prevent organizations from having to reinvent the wheel.
Regards,
Alex
-----Original Message----- From: kictanet [mailto:kictanet-bounces+awatila=yahoo.co.uk@lists.kictanet.or.ke] On Behalf Of Barrack Otieno via kictanet Sent: Thursday, June 30, 2016 7:29 AM To: awatila@yahoo.co.uk Cc: Barrack Otieno <otieno.barrack@gmail.com> Subject: [kictanet] Draft National ICT Policy Discussions Day 7 of 10: How to enhance Cybersecurity
Listers,
Many thanks to those who contribued to day 6 discussions. The thread is still open, we also encourage listers to edit the policy directly on the Jadili platform (http://jadili.ictpolicy.org/docs/kenya-ict-policy).
Today we focus on the following areas:
*Online Citizen Safety, *Child Protection *Privacy issues *Security business transactions (Info-Security) *Security & Reliability of Critical ICT infrastructure
The Background:
The more we automate and rely on digital services, the more vulnerable we become as a society to cybercrime and other threats facing the digital society.
The regulator has a Computer Emergency Response Team (CERT), the industry (TESPOK) also has a CERT, the Department of Criminal Investigation & National Intelligence also have CERT. What is not clear is whether there is a framework to have these teams working together and their capacity to counter a full-blown cyber attack against our digital national assets.
Additionally, the tension between citizen privacy and national security, citizen privacy and business (profit) concerns remain perhaps due to lack of Data Protection, eTransaction and other laws. Finally, special protection for vulnerable groups (children) going online is non-existent.
What needs to be done around these issues?
Kindly submit your views.
Best Regards
-- Barrack O. Otieno +254721325277 +254733206359 Skype: barrack.otieno PGP ID: 0x2611D86A
_______________________________________________ kictanet mailing list kictanet@lists.kictanet.or.ke https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/awatila%40yahoo.co.uk
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.
KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
_______________________________________________ kictanet mailing list kictanet@lists.kictanet.or.ke https://lists.kictanet.or.ke/mailman/listinfo/kictanet
Unsubscribe or change your options at https://lists.kictanet.or.ke/mailman/options/kictanet/ultimateprogramer%40gm...
The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.
KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or qualifications.
-- *Ahmed Maawy* Executive Director - SwahiliBox / M-Power (CBO) Curator - Global Shapers Mombasa Hub Ambassador - Open Knowledge Director - Startup Grind Mombasa Software Developer - AJ+ / EveryLayer (KE) +254 714 960 627 Skype: ultimateprogramer swahilibox.co.ke globalshapers.org www.okfn.org <http://okfn.org/> startupgrind.com ajplus.net www.everylayer.com
participants (6)
-
Ahmed Mohamed Maawy -
Alex Watila -
Ali Hussein -
Barrack Otieno -
Joan Cheriro -
Sam Oduor