Hi Logan,
I read
http://logan.hackers.mu/2015/10/insecure-internet
"One of the major limitations of DNSSEC is that the question/response is not
encrypted. A 3rd party can monitor my DNSSEC messages, and build a profile
about my surfing habits, such as the time I usually check my Bank account."
My very simple response to the above is yes.
"PKI can be leveraged by ISPs to prevent accidental or intentional
prefixes from being hijacked."
Shouldn't that be RPKI?
"How much is Africa investing into not only improving Internet connectivity,
but also securing our Internet ? (BCP-38 anyone ?)"
What does BCP 38 have to do with securing the internet?
"The local banks are discouraging me from getting my statements via mail.
They send it to me by email. However, that email is not encrypted/
digitally signed."
From
https://www.sbmgroup.mu/products.php?pid=39&suf1=pb&lang=en#faqs
"The e-Statement service delivers your periodic bank statement as a
password protected PDF attachment to your registered e-mail address."
Which local banks send the statement by email without applying any
security measure?
"What about the Cyber/Internet Institutions that have a mandate and a
budget in Africa & Mauritius ?"
The National Computer Board has a budget. I am not sure whether it
is within its mandate to "seriously look into improving the security
of our internet". I'll ask you, as member of the ICT Advisory
Council, the following: is there an institution in Mauritius which
has a mandate to look into internet security?
Regards,
S. Moonesamy
Received on Mon Nov 02 2015 - 16:00:51 PST