The Collaboration on International ICT Policy for East and Southern Africa (CIPESA), under the OpenNet Africa initiative, is proud to announce the upcoming Forum on Internet Freedoms in East Africa. The two-day Forum is scheduled for 28 – 29 September 2015, in Kampala, Uganda, to coincide with the International Right to Know Day.
During the Forum, we’ll discuss the current state of internet freedoms in Africa, including threats, emerging issues, and opportunities for action to promote access, privacy and security online. The Forum brings together human rights defenders, journalists, government officials, academia, bloggers, developers, the arts community, law enforcement agencies and communication regulators, all of whom have a role to play in advancing the rights of citizens to privacy and freedom of expression in the online sphere. At the inaugural 2014 forum, we hosted 85 participants from Burundi, Kenya, Nigeria, Tanzania, Rwanda, and Uganda.
Visit the Forum page for more information and application form.
By Marilyn Vernon & Liz Orembo |
Threats to citizens’ access to information, privacy, security and freedom of expression online are increasingly coming under scrutiny in East Africa. According to the World Press Freedom Index, Kenya who was ranked number 71 out of 180 countries in 2013, dropped 29 places to number 100 in 2014. Meanwhile, cybercrime is also on the rise in the country. The Kenya Cyber Security Report 2014 shows a 108% increase in detected cyber threat incidents, from 2.6 million attacks in 2012 to 5.4 million in 2013.
The Cyber Security Report attributes the surge in criminal activity to the increasing value of information and the lower risk of detection and capture. Businesses and individuals are susceptible to threats stemming from spyware, social media, unsecured email, and theft of mobile computing devices.
Kenya’s ranking in the World Press Index reflects the deteriorating relationship between the media and the state. The steady decline is partly attributed to the passing of prohibitive legislation, most notably the Kenya Information and Communications (Amendment) Act and the Media Council Act of 2013, which subjects violators to heavy fines and asserts undue state control over media practice.
A few journalists in Kenya have boldly reported on sensitive topics at the risk of imprisonment or financial penalties. Reported cases of assassination, disappearance, destruction of property, confiscation of equipment, and arrests are among the list of violations committed against journalists and activists.
Notably, controversial blogger Bogonko Bosire, who worked for Agence France Presse (AFP), went missing two years ago. He was known for his criticism of President Uhuru Kenyatta’s administration during the International Criminal Court (ICC) proceedings. It is reported that Bosire had been threatened multiple times, and his website Jackal News suffered at least one digital attack. Various rumors surrounding his fate spread online, but his whereabouts remain unknown.
In a digital safety and security training workshop conducted last month by the Collaboration on International ICT Policy for East and Southern Africa (CIPESA) in partnership with Kenya ICT Action Network (KICTANet), journalists, bloggers and activists admitted to using the Internet for research, communication and reporting but with little or no understanding of the existing digital threats.
“Why do I need security?” and “I’m not that important for anyone to waste time looking for information in my gadgets” were some of the comments participants made.
Other shortcomings identified in the pre-workshop assessment included poor organisation IT mobility policies whereby, just like other business organisations in Kenya, media houses allow their employees to carry their own devices to the workplace. Some of these devices are also used in public places by employees to meet their work targets. This increases the risks of journalists having their data lost or compromised especially since theft of mobile and computing devices is rampant in the country.
Freelance journalists indicated being unable to acquire the necessary digital safety resources as often availed to counterparts fully employed by the media houses. Besides, there was a widespread use of free web-based email services such as Yahoo, Google mail and Hotmail through which practitioners felt “sensitive communication can be intercepted since some of these email service companies have histories of being hacked”.
Accordingly, the CIPESA-KICTANet training workshop set out to equip participants with the necessary tools and knowledge needed to protect their digital information and communication, and to respond to various types of digital threats. The workshop topics ranged from the importance of digital security, secure communication and data storage, to PC and mobile device security, as well as the ethical and legal aspects of digital communication on social media platforms.
The interactive sessions enabled a knowledge-sharing environment in which participants were able to evaluate their security vulnerabilities and to choose security tools they would use to protect themselves and their work. Attendees engaged in group discussions, lab demonstrations, and case studies of ethical blogging. Participatory sessions demonstrated how to encrypt emails, create strong memorable passwords, and identify built-in security features on mobile devices to determine which are important for personal safety – taking into account that security features are only effective when used well.
As a means to protect information and guard against digital threats, the workshop facilitator, Harry Karanja, encouraged participants to use tools such as anonymous internet navigation settings, data encryption, and virtual private networks (VPN). He also recommended use of IP anonymisation and signing up with secure anonymous email services.
Participants were also urged to refrain from sharing personal identifiable information online, perform regular updates to the latest versions of operating systems, and back up their data.
Recommendations from participants for future workshops included partnering with learning institutions to train student journalists on digital security prior to engaging in professional work and the development of online tutorials for ongoing reference.
The workshop, held at Riara University in Nairobi, Kenya on June 17-18 2015, had 24 participants from Kenyan print, broadcast, and online news agencies. It is the fourth in a series of digital safety awareness and capacity building trainings conducted this year by CIPESA under its OpenNet Africa initiative. The others have been held in Tanzania and Uganda.
By CIPESA Staff |
As Uganda draws closer to the February 2016 presidential elections, the fever of anxiety in government corridors is rising. Over the years, election periods have seen a crackdown on social media, voices critical of the ruling party, and independent media in the guise of promoting public order and unity as well as preventing the spread of false information. This, however, has sparked debate on the fine line between preserving national cohesion and hampering free speech.
See our full analysis of Hunting Down Social Media ‘Abusers’ in Uganda as Elections Near in our Policy Briefing Series
By Jean Paul Nkurunziza and Alain Ndikumana |
Following on from the State of Internet Freedoms in Burundi 2014report published last May, this brief presents an update on Information and Communication Technology (ICT) access, the legal and regulatory policies and practices that affect internet freedoms in the Burundi. It covers the period from March 2014 to May 2015. Notably, Burundi has been rocked by a coup attempt and intermittent public protests against President Pierre Nkurunziza’s plan to contest for a third term in office in apparent defiance of a two terms limit set by the constitution.
During the upheavals in April and May, the country’s communications regulator reportedly directed internet service providers to cut access to social media, and several media houses were pillaged. Meanwhile, the East African Court of Justice declared sections of the country’s media law undemocratic, but it upheld articles on the regulation of print and online media, which have been criticised by journalists and human rights defenders for negating freedom of expression.
Read the full State of Internet Freedoms in Burundi as of June 2015
By Ashnah Kalemera |
There are numerous tools which can secure online users’ communications, including through anonymising their identities and enabling them to circumvent online surveillance and censorship. In some cases, developers have gone on to localise such tools to suit various contexts. However, the tools’ relevance to certain populations and how best to improve them for a diverse range of users remains largely unknown.
During May 2015, the Collaboration on International ICT Policy for East and Southern Africa (CIPESA) in partnership with tech innovation hub OutBox challenged members of the Ugandan tech community to test five digital safety and security tools in order to gain an understanding, in a local context, of the tools’ strengths, weaknesses and opportunities for localisation. The challenge was in the context of CIPESA’s OpenNet Africa initiative which monitors and promotes internet freedom in east and southern Africa.
The tested tools were Cyrptocat, Mailvelope, Martus, TextSecure and Redphone. The scope of testing included how the tools enabled anonymisation, circumvention, and privacy of communications. The tests had to take into consideration different user communities, including women, bloggers, journalists, human rights defenders, and sexual minorities, and the nature of threats to internet freedom in the East African region. A team presents to the panel during the OpenNet Africa Tools Testing Challnge
These threats are often linked to the fight against terrorism, combating online hate speech, suppressing the views of opposition parties (mainly around election periods), and in crackdowns against particular groups, such as Lesbian, Gay, Bisexual, and Transgender (LGBT) community, critical media and human rights activists. The threats often come in the form of surveillance, blocking of websites and social media sites, and interception of communications.
Three teams participated in the challenge through trial exercises, user consultations and stakeholder interviews. In considering which tools were better suited to promote internet freedoms of the region’s citizens, the teams that conducted the tests also bore in mind the proliferation of technology, internet speeds and literacy levels in the region. Language, multiple device use and aesthetics such as the interface design including colours and icons, were also among the other features for testing.
The teams found a number of shortcomings on some tools, including the lack of protection from key loggers, poor or no consideration for low internet speed users and those with low ICT skills and literacy levels. Some tools were found to have limited cross platform/device operability, while others were not accessible to visually impaired persons. Select test findings
An Android based mobile app that allows for encrypted voice calls over a Wi-Fi or data connection using a normal phone number.
Unregistering a RedPhone number is not currently supported.
Very slow or no synchronisation with contacts that have RedPhone installed, meaning there is no possibility to upgrade calls to encrypted calls even when the user being called is running the RedPhone app.
“Pious, a 25-year old IT student at Makerere said that he is now using Redphone with his girlfriend whenever they feel like phone sex in order to avoid the spying software announced by Fr. Simon Lukodo, Minister of Ethics and Integrity,” Tean Tech4Dev
The teams made recommendations for improvement and localisation, including translation of the tools into local languages, compatibility provisions across social media platforms, and feature phone support.
The teams also proposed numerous cases in which the tools can be used by marginalised and vulnerable user groups in East Africa. They cited youth mobilisation, gender-based violence and other human rights violations reporting, monitoring and victims support, facilitation of opposition groups’ activities, and protection from corporate espionage.
However, the teams also highlighted the potential of the tools promoting hate speech and radicalism in East Africa’s fragile socio-political environment through safeguarding the communications and activities of offenders.
“One of the primary uses of the Internet by terrorists is for the dissemination of propaganda. Through encrypted communications, terrorists can easily spread their propaganda and also plan their activities,” noted Team African Value. The team added that promotion of divisiveness and encouraging violent acts on ethnic grounds has become common on East African online platforms.
The teams also noted the need for increased awareness raising and capacity building among users to promote an understanding of cyber threats and online safety. Among the possible ways to achieve this was through working with academia to develop cyber security curriculums for education institutions.
The findings of the teams were showcased at a pitching event held on June 2, 2015 where a panel of judges determined the team with the best reports and localisation recommendations. The judges were Wilson Abigaba (Internet Society – Uganda Chapter), Richard Lusimbo (Sexual Minorities Uganda), Baldwin Okello (Uganda Telecom) and Neil Blazevic and Mark Kiggundu – both from East and Horn of Africa Human Rights Defenders Project.
The winning team was Tech4Dev, which was followed by Ghost In The Wires then African Values. See more on the event on Storify
