The Evolution of Internet Shutdowns in DR Congo

By Arsene Tungali |
In the past seven years, citizens in the Democratic Republic of Congo (DRC) have experienced a series of intentional interruptions to online communications, affecting the exercise of rights to freedom of expression and information as well as access to services.
The first shutdown of digital communications reported in DRC was in December 2011. The shutdown affected SMS, and lasted 25 days. At the time, few people appreciated the magnitude of this state-initiated act or knew how to respond to it.
The SMS shutdown came in the aftermath of the general elections but just before the announcement of the election results. One of the reasons cited by the government for blocking communication was to prevent the spread of fake results over the internet before the electoral commission announced official results. This SMS communications shutdown went largely unnoticed by the global community who had been captivated earlier in the year by the January 2011 Egyptian internet shutdown.
Three years later in January 2015, the Congolese government again ordered telecommunications companies to block access not only to SMS but also the internet. This shutdown came on the backdrop of protests against a proposed electoral bill. Whereas banks and government agencies were granted access to the internet four days after the shutdown, the general public did not regain access until after three weeks.
The most recent Internet shutdown in DRC occurred on December 19, 2016 – the day President Joseph Kabila was supposed to step down as head of state. There were a lot of planned protests across the country against the president’s stay in office beyond the two term limit, in response to which the government ordered telecom operators to block to social media sites as an attempt to thwart mobilising by protestors.
Recent statistics show that for a population of over 70 million, only 4% of the inhabitants are connected to the Internet due to limited infrastructure and high access costs. Nonetheless, those with access are exploiting various online tools for communication, discourse on governance and activism. According to the State of Internet Freedom in DRC 2016 report, political parties maintain WhatsApp groups for strategic planning of campaign rallies. Meanwhile, through trending hashtags on social media, activists and ordinary citizens create public awareness on issues such as arbitrary arrests and other human rights concerns.
Government actions such as shutdowns, alongside surveillance and censorship practices as documented in the 2016 report, undermine the development of inclusive internet society in the central African country.

“There should be more effort towards developing infrastructure, progressive legislations, private sector investment, local content in local languages and more trainings in digital rights and digital security.”  State of Internet Freedom in DRC 2016

As internet users have become more conscientious of their online rights, many activists and Internet users have turned to the use of Virtual Private Networks (VPN) to circumvent internet blockages. Many more are interested in taking digital security trainings, which explore topics like encryption, mitigating surveillance and tools for safe online communication.

“We knew nothing about VPNs until Internet was blocked in the DRC.” DRC Journalist

The trend of governments initiating internet shutdowns, not only in DRC, has attracted global condemnation. In many cases, these calls have gone unanswered by government officials and communication regulators, leading many to believe that this trend is likely to continue. In the spirit of the multi-stakeholder model of internet governance, other actors (not only government) should continue to play active roles to counter this practice or to support initiatives aimed at promoting more access and affordability in developing countries.

  1. Continued pressure on governments: Stakeholders should keep on applying pressure to those governments that shut down the internet. They should also increase awareness of the implication of a shutdown including the economic losses suffered at a national and micro level. However, this should be supplemented with more research on the economic impact of Internet shutdowns.
  2. The Autonomy of Service Providers: Telecommunications companies often receive orders from governments to block internet access. Clauses in their license agreements force them to comply when such orders are issued, failure of which could result in termination of licences. Nonetheless, telecom companies and ISPs should more actively release details of government information requests, takedown and shutdown notices in a bid to support the transparency of processes and accountability of oversight bodies.
  3. Civil society organisations and awareness: CSOs are among the most vocal groups condemning internet shutdowns in alliance with end-users, activists, journalists, and even private sector. They should also increase the number of trainings and capacity building programs on digital security and inform more people of their digital rights in order to be in a position to demand these rights.
  4. Development of Progressive Policy: In DRC there is a pressing need for new laws that cover the ICT sector. Apart from the constitution, there are only two legislations (the first on Telecommunications and the other establishing the Regulator) both from 2002. The existing legislative and policy framework need to be updated and reframed to provide more clarity on the role of all players in DR Congo’s ICT arena and to provide for online privacy and freedom of expression.

Internet Freedom Festival 2017: CIPESA to Host Session on Navigating Internet Freedom Challenges in Africa

By Lillian Nalwoga |

The annual Internet Freedom Festival (IFF) has commenced in Valencia, Spain with hundreds of journalists, activists, technologists, policy advocates, digital safety trainers, and designers from around the world in attendance. The Collaboration on International ICT policy for East and Southern Africa (CIPESA) will host a session “Internet Freedom in Africa: Navigating the challenges” to spark conversation on current internet freedom challenges in Africa while providing possible solutions. In addition, CIPESA shall join panel sessions hosted by partners, such as the Association for Progressive Communications (APC), Hivos, the Ford Foundation and International Media Support (IMS).
The IFF is built upon the goals of creating an inclusive information and resource sharing space, increasing the diversity of the internet freedom community, and collectively improving the services, strategies, and tools offered to the most vulnerable individuals by mapping censorship, surveillance and access obstacles faced in different regions in the world.
As internet usage rises in Africa, so do the abuses and attacks on online rights fuelled by the proliferation of laws which negate the rights to privacy and freedom of expression. Further, limited judicial oversight over surveillance and interception of communications are contributing to self-censorship and threatening civic participation and free flow of information online.
The ethos of the IFF resonates with CIPESA’s  areas of the work. These include monitoring online rights violations and information control tactics, championing  a network of actors in Africa to advance progressive policy development and multi-stakeholder engagements and capacity building on digital skills among human rights defenders and journalists. The session we shall  host on navigating internet freedom challenges in Africa will partly be informed by  CIPESA’s report on the State of Internet freedom in Africa 2016 and issues that are influencing the right to information, data privacy and free speech online in Africa. We will also explore the lessons learnt from researching and advocating for internet freedom in various African countries.
The session will offer participants an opportunity to interact with internet freedom thought leaders from Africa by exploring two key questions:

  1. What is the status of internet freedom in Africa?
  2. How can we ensure a sustainable approach in promoting a free, open and safe internet in Africa?

Join us Friday March 10, 2017 09:45 – 10:45am in the Visual Room or contribute to the conversation online: #InternetFreedomAfrica @cipesaug @opennetafrica
Other sessions at IFF of interest to CIPESA, some of which shall feature CIPESA staff, include:

Announcement: Forum on Internet Freedom in Africa 2016

The Forum on Internet Freedom in Africa is scheduled to take place on September 27–29, 2016 in Kampala, Uganda.
The Forum provides a unique opportunity to deliberate and build a network of supporters of internet freedom in Africa. It brings together a wide range of civic actors such as journalists, bloggers, human rights defenders, and activists, private sector actors such as telecom companies, as well as communication regulators and law enforcement.
In 2015 the Forum assembled panelists from a diversity of backgrounds, which facilitated spirited discussions as captured in this report.

See the 2015 Forum Highlights video

A key highlight at the Forum is the launch of the State of Internet Freedom in Africa report that captures trends on internet freedom in select African countries. The 2016 report will cover the most number of countries so far.
These deliberations come as various African countries witness a slide in online freedom of expression and association, as well as breaches of the rights to privacy and access to information.
Visit the Forum page for more information.
Eventbrite - Forum on Internet Freedom in Africa 2016

ICT in Governance in Kenya – Policies and Practice

In November 2014, internet statistics source Socialbakers estimated that there were 3.6 million Kenyans on Facebook, with 64% of them male and 36% female. The majority of Facebook users (75%) were aged 18-34 years. As of September 2015, the Kenyan Twitter account with the highest number of followers was @UKenyatta, the Kenyan President’s account that had over one million followers, followed by @ntvkenya with 979,838 followers.”

This report reviews government and non-government Information and Communication Technology (ICT) initiatives in Kenya, and examines how ICT-related policies and other legislation affect citizen participation and democratic governance. Among others, the study covers the link between ICT and political participation, social accountability, public services delivery and citizen engagement. The report is based on policy analysis,
stakeholder interviews and literature review, and aims to inform awareness raising initiatives and advocacy for more progressive policies and practices regarding the use of ICT in governance and civic participation in Kenya.

OpenNet Africa Challenge Uncovers Gaps in Digital Safety Tools

By Ashnah Kalemera |
There are numerous tools which can secure online users’ communications, including through anonymising their identities and enabling them to circumvent online surveillance and censorship. In some cases, developers have gone on to localise such tools to suit various contexts. However, the tools’ relevance to certain populations and how best to improve them for a diverse range of users remains largely unknown.
During May 2015, the Collaboration on International ICT Policy for East and Southern Africa (CIPESA) in partnership with tech innovation hub OutBox challenged members of the Ugandan tech community to test five digital safety and security tools in order to gain an understanding, in a local context, of the tools’ strengths, weaknesses and opportunities for localisation. The challenge was in the context of CIPESA’s OpenNet Africa initiative which monitors and promotes internet freedom in east and southern Africa.
The tested tools were Cyrptocat, Mailvelope, Martus, TextSecure and Redphone. The scope of testing included how the tools enabled anonymisation, circumvention, and privacy of communications. The tests had to take into consideration different user communities, including women, bloggers, journalists, human rights defenders, and sexual minorities, and the nature of threats to internet freedom in the East African region.

A team presents to the panel during the OpenNet Africa Tools Testing Challnge
A team presents to the panel during the OpenNet Africa Tools Testing Challnge

These threats are often linked to the fight against terrorism, combating online hate speech, suppressing the views of opposition parties (mainly around election periods), and in crackdowns against particular groups, such as Lesbian, Gay, Bisexual, and Transgender (LGBT) community, critical media and human rights activists. The threats often come in the form of surveillance, blocking of websites and social media sites, and interception of communications.
Three teams participated in the challenge through trial exercises, user consultations and stakeholder interviews. In considering which tools were better suited to promote internet freedoms of the region’s citizens, the teams that conducted the tests also bore in mind the proliferation of technology, internet speeds and literacy levels in the region. Language, multiple device use and aesthetics such as the interface design including colours and icons, were also among the other features for testing.
The teams found a number of shortcomings on some tools, including the lack of protection from key loggers, poor or no consideration for low internet speed users and those with low ICT skills and literacy levels. Some tools were found to have limited cross platform/device operability, while others were not accessible to visually impaired persons.
Select test findings
 

Tool Safety and Security Features Key test finding limitation
Martus Allows for secure collection, transmission and storage of data. It is popularly used by human rights defenders.
  • There is no option for retrieving a lost encryption key

 

Cryptocat This app enables encrypted chat via a browser and mobile phone.
  • Lack of IP address anonymisation
  • There are no administrative privileges in group chats meaning there is free entry and exit of members in the conversations.
Mailvelope This is a browser extension that enables the exchange of encrypted emails
  • Lack of an attachment encryption function
Redphone An Android based mobile app that allows for encrypted voice calls over a Wi-Fi or data connection using a normal phone number.
  •  Unregistering a RedPhone number is not currently supported.
  • Very slow or no synchronisation with contacts that have RedPhone installed, meaning there is no possibility to upgrade calls to encrypted calls even when the user being called is running the RedPhone app.
TextSecure Secure messaging app
  • Recently dropped SMS support
  • Installation requires Google services

 

“Pious, a 25-year old IT student at Makerere said that he is now using Redphone with his girlfriend whenever they feel like phone sex in order to avoid the spying software announced by Fr. Simon Lukodo, Minister of Ethics and Integrity,” Tean Tech4Dev

The teams made recommendations for improvement and localisation, including translation of the tools into local languages, compatibility provisions across social media platforms, and feature phone support.
The teams also proposed numerous cases in which the tools can be used by marginalised and vulnerable user groups in East Africa. They cited youth mobilisation, gender-based violence and other human rights violations reporting, monitoring and victims support, facilitation of opposition groups’ activities, and protection from corporate espionage.
However, the teams also highlighted the potential of the tools promoting hate speech and radicalism in East Africa’s fragile socio-political environment through safeguarding the communications and activities of offenders.
“One of the primary uses of the Internet by terrorists is for the dissemination of propaganda. Through encrypted communications, terrorists can easily spread their propaganda and also plan their activities,” noted Team African Value. The team added that promotion of divisiveness and encouraging violent acts on ethnic grounds has become common on East African online platforms.
The teams also noted the need for increased awareness raising and capacity building among users to promote an understanding of cyber threats and online safety. Among the possible ways to achieve this was through working with academia to develop cyber security curriculums for education institutions.
The findings of the teams were showcased at a pitching event held on June 2, 2015 where a panel of judges determined the team with the best reports and localisation recommendations. The judges were Wilson Abigaba (Internet Society – Uganda Chapter), Richard Lusimbo (Sexual Minorities Uganda), Baldwin Okello (Uganda Telecom) and Neil Blazevic and Mark Kiggundu – both from East and Horn of Africa Human Rights Defenders Project.
The winning team was Tech4Dev, which was followed by Ghost In The Wires then African Values. See more on the event on  Storify