Trinidad and Tobago Computer Society

Author: ttcsadmin

The Trinidad and Tobago Cyber Security Agency Bill, 2015
The Trinidad and Tobago Cyber Security Agency Bill, 2015 was introduced as the same time as the Cybercrime Bill 2015 by the Minister of National Security Brigadier General Carlton Alfonso on May 1 2015.

It seeks to establish a the Trinidad and Tobago Cyber Security Agency (TTCSA) to act as a national point of contact for all cyber security related concerns and other related matters. The functions of the TTCSA are to:

(a) act as the national point of contact for all cyber security related matters;

(b) establish a national computer incident response team to be known as the “Trinidad and Tobago Cyber Security Incident Response Team” (hereinafter referred to as “TT-CSIRT”);

(c) refer matters to the police, where evidence of an offence under the Cybercrime Act, 2015 comes to its knowledge;

(d) prepare, review and update periodically and in any event at least annually, a national cyber security strategy and prepare such plans as are necessary for the successful implementation of such strategy;

(e) collaborate with the relevant public body in the collection of relevant information which would facilitate the analysis of current and emerging risks, including those risks which could produce an impact on the resilience and availability of data communications networks and on the authenticity, integrity
and confidentiality of the information accessed and transmitted through such
networks;

(f) provide advice on cyber security related matters, including situational awareness information, to the Minister, the Trinidad and Tobago Police Service or such other competent national bodies as are necessary;

(g) enhance cooperation between different actors operating in the field of cybersecurity by holding consultations with, interalia, various industries, universities, public sector bodies and private sector and civil society bodies;

(h) contribute to the awareness raising, and the availability of, current, objective and comprehensive information on cybersecurity by, inter alia, promoting exchanges of current best practices, including methods of alerting users and facilitating cooperation and collaboration between public and private sector initiatives.

(i) develop and publish standards for products and services on cyber security;

(j) establish and publish baseline cyber security requirements and standards for
various sectors including operators of critical infrastructures;
(k) conduct research and development in the area of cyber security and identify critical research and development needs, gaps and emerging trends for future research;

(l) promote the development of training and education programmes including the accreditation and certification of cyber security academic programmes;

(m) advise the Minister on research in the area of cyber security as well as on the effective use and adoption of risk preventative technologies;

(n) promote risk assessment activities, interoperable risk management solutions and studies on cyber security management solutions within public and private sector bodies;

(o) collaborate with the relevant public body in the provision of educational guidelines to the national community, as to the appropriate use of the national network infrastructure;

(p) establish internal and joint procedures between the public and private sectors to manage the incidents and mitigate the threats associated with them;

(q) provide appropriate strategic insights to policy and decision-makers and public bodies in order to strengthen the national network infrastructure;

(r) develop a National Cyber Security Contingency Plan;

(s) coordinate cyber security exercises; and

(t) express independently its own conclusions and orientations and give advice on matters within its scope and objectives.

The Bill lapsed with the end of the Parliamentary session on June 17 2015.
- Trinidad and Tobago Cyber Security Agency Bill, 2015 (PDF ; 85K)
- Trinidad and Tobago Parliament page on the Trinidad and Tobago Cyber Security Agency Bill 2015 which includes the Hansard of the Parliamentary discussions
20 June 2015
Cybercrime Bill 2015
The Cybercrime Bill 2015 and the Trinidad and Tobago Cyber Security Agency Bill 2015 were introduced in the House of Representatives by the Minister of National Security Brigadier General Carlton Alfonso on May 1 2015.

The Cybercrime Bill 2015 seeks “to provide for the creation of offences related to cybercrime and related matters” and if passed would repeal the Computer Misuse Act 2000

The key changes between the Cybercrime Bill 2014 and the Cybercrime Bill 2015 were:
- the penalties were adjusted for the various cybercrime offences
- Clause 17 in the 2014 bill re: creating the offence of child pornography through the use of ICT was removed in the Cybercrime 2015 bill
However, the Cybercrime Bill 2015 lapsed with the end of the Parliamentary session on June 17 2015.
- Cybercrime Bill 2015 (PDF ; 122K)
- Trinidad and Tobago Parliament page on the Cybercrime Bill 2015 which includes the Hansard of the Parliamentary discussions.
20 June 2015
Telecom Authority of #Trinidad & #Tobago document “Towards the Treatment of Over-The-Top (OTT) Services” out for comment til July 20 2015

(Update 6 July 2015 – TATT has extended the deadline to July 20 2015 ; fixed URL to joint statement on Digicel’s blocking VoIP services in 2014)

In addition to the ICT Forum on June 18 2015 on the topic of whether Over the Top (OTT) Services and Voice Over Internet Protocol (VOIP) messaging services such as Skype, Whatsapp, Magic Jack, Viber and Tango , the Telecommunications Authority has posted a document “Towards the Treatment of Over-The-Top (OTT) Services” (PDF ; 2MB) for public comment until July 20 2015 ~~June 30 2015~~

Note: ( TTCS mirror of document “Towards the Treatment of Over-The-Top (OTT) Services”)

From the document:

This document is based on information from research conducted by the Telecommunications Authority of Trinidad and Tobago (the Authority) and discusses different aspects of Over-The-Top (OTT) services, focusing particularly on whether or not such services should be regulated and if so, determine what regulatory measures should be adopted to ensure that stakeholder interests can be best protected. It presents views on the possible impact of OTT services and how such services should be treated considering the recent developments taking place in the telecommunications space.
The document seeks comments on whether proposed regulation should be imposed on providers to protect stakeholder, including end-user, interests. It is therefore appropriate for consumers and operators to share their views on the document with the Authority, which would assist the Authority in the shaping of a final policy position.

The document references the joint statement from the Trinidad and Tobago Computer Society, the Internet Society Trinidad and Tobago Chapter and the IEEE Trinidad and Tobago Section on Digicel’s Trinidad and Tobago’s ban on Voice over IP services in 2014.

11 June 2015
Telecom Authority of #Trinidad & #Tobago ICT Forum on June 18 2015 “Should Over the Top (OTT) Services be Regulated?”

The Telecommunications Authority of Trinidad and Tobago (TATT) will be hosting its ICT Open Forum titled “Should Over The Top (OTT) Services be Regulated” on Thursday 18th June 2015 from 3:00 pm to 6:00 pm at

TATT Office
#5 Eighth Avenue Extension, off Twelfth Street, Barataria.

Quoting from the TATT flyer:

“Over the Top (OTT) services and Voice Over Internet Protocol (VOIP) messaging services such as Skype, Whatsapp, Magic Jack, Viber and Tango are reportedly being used more frequently than traditional telephone services for local and international calling and SMS messaging, as they can be more affordable, accessible, and convenient than traditional telecommunications and broadcasting services.

These services utilise network elements and capacity of authorised operators in the delivery of the service to customers which can compromise the efficiency and effectiveness of authorised network operators. As a consequence there is a current concern as to whether they should be regulated and the extent to which this should be undertaken.”

Presentations will be delivered by representatives of the Authority and the Telecommunications industry.

Pre-registration is required by noon on Friday 12th June 2015, contact Mr. Rawle Harvey or Ms. Patrice Sealey via e-mail at [email protected] or telephone at 675-8288 Ext.349 or Ext.374.

11 June 2015
Patch Tuesday for June 2015 brings patches/updates for Microsoft Windows and Adobe Flash
Every second Tuesday of the month, many software vendors release various security updates and patches for their software. Microsoft and Adobe have all released security updates on Tuesday June 9 2015.

Microsoft Windows

Microsoft released 8 updates for the Windows operating system (Vista and higher) and Microsoft Office – many of which are rated important or critical. An excellent breakdown of all of the updates can be found at Ghacks.net

Adobe Flash

According to the Adobe security bulletin dated June 9 2015:

“Adobe has released security updates for Adobe Flash Player for Windows, Macintosh and Linux. These updates address vulnerabilities that could potentially allow an attacker to take control of the affected system”

So update asap! Many conferencing solutions (like Adobe Connect) and Flash games use the Flash plugin.

However, if you only use Adobe Flash for watching YouTube videos, YouTube now defaults to HTML5 instead of Adobe Flash for playing videos in Google Chrome, IE 11, Apple Safari 8 and in beta versions of Firefox. So you can uninstall Adobe Flash if you are using these browsers (and not worry about keeping it up to date)

The latest update bumps the latest version of Flash Player for Windows and Mac OS X to version 18.0.0.160.

To determine what version of the Adobe Flash player you have on your Windows, Macintosh or Linux system, visit
http://www.adobe.com/software/flash/about/

To download an offline version of Adobe Flash Player for Windows, Mac OS X and Linux without any adware or bundled third-party offers, visit
http://www.adobe.com/products/flashplayer/distribution3.html

Opera and Chromium browser users, you’ll have to download the flash player installer from http://www.adobe.com/go/getflash.

Windows users should take note that
- the Flash Player in Microsoft Internet Explorer v9 and earlier versions of Internet Explorer,
- the Flash player in web browsers like Mozilla Firefox and Safari
- the Flash player in web browsers in Chromium and Opera
are separate installs. You should install and update versions of Adobe Flash for all three browser variations if you have all three installed.

For Internet Explorer v10 and Internet Explorer v11 (for users for Windows 7 Service Pack 1 and Windows 8), these browsers have Adobe Flash Player built-in and users should update their Internet Explorer browser versions.

Google Chrome browser users has Adobe Flash Player built-in and users should update the Google Chrome browser to the latest version. See https://support.google.com/chrome/answer/95414 on how to do so.
11 June 2015
Trinidad and Tobago Computer Society lime on June 10 2015 from 7 to 9pm ; please RSVP!
The Trinidad and Tobago Computer Society (TTCS ; http://cs.tt) will be having a lime on Wednesday June 10 2015 from 7pm to 9pm at Wendy’s Cafe located upstairs at Wendy’s Restaurant at the corner of Ana Street & Ariapita Avenue, Woodbrook, Port of Spain.

Come join as we eat and chat about various ICT topics including:
- TSTT shuts down email hosting under tstt.net.tt ; users @tstt.net.tt have until June 30 2015 to migrate and backup their data
- Cybercrime Bill 2014 concerns from MATT
- Should Over the Top Services (such as Skype, Whatsapp, Viber) be regulated? The Telecommunications Authority of Trinidad and Tobago will be having a forum later this month on this topic. This raises the issue of Network neutrality as it relates to the “zero rating” of apps/services. Zero rating refers to the practice of telecom/mobile providers charging nothing or very little for the data used by specific apps and web services on their network.
- Windows 10 to be available July 29 2015 as a free upgrade for anyone running Windows 7 or Windows 8.1
Anyone interested in computing and ICT are welcome to attend, however please RSVP to [email protected] as space is limited.

Please note that for this meeting, you will be able to purchase food directly from Wendy’s at your own expense. The minimum contribution to TTCS for this meeting is $20.

We look forward to seeing you!
6 June 2015
TSTT shuts down email hosting @tstt.net.tt ; users @tstt.net.tt have until July 31 2015 to migrate and backup their data

Screenshot shown to users logging onto tstt.net.tt from June 1 2015 (Credit : TSTT)

(Update July 3 2015 – TSTT has extended their shutdown deadline to end of July 2015)

(Update June 5 2015 – added mention of TSTT’s removal of inactive accounts @tstt.net.tt from November 2014)

On May 29 2015, TSTT posted an email advisory that for its email customers using tstt.net.tt that it will be discontinuing hosting of email addresses at tstt.net.tt by ~~June 30 2015~~ July 31 2015 and advising that users should migrate their data before June 30 2015 and a link to https://sites.google.com/a/tstt.net.tt/google-phaseout/ to discuss how users can backup or migrate their data to other cloud services.

But why did TSTT discontinue email hosting of emails @tstt.net.tt? The email advisory cites the reason for this was Google’s decision to shut down its Google Apps for ISP service.

TSTT email hosting was provided under Google Apps Partner Service which Google announced in May 2007 which, as the blog post notes, gives ISPs the ability to “offer your subscribers the latest versions of powerful tools, like Gmail, Google Calendar, and Google Docs & Spreadsheets, without having to worry about hosting, updating, or maintaining any of the services yourself.”

TSTT switched to Google Apps hosting around 2008. Here’s a screenshot of TSTT’s page from our blogpost in 2008

screenshot of http://mail.tstt.net.tt/ in 2008

However, last year, Google announced that it was discontinuing its program (with admittedly little fanfare), according to this forum thread.

An article in Viodi.com discusses the impact of the discontinuation of the Google Apps for ISPs service to small, rural ISPs. And the challenges noted in that article were likely also faced by TSTT, leading to its decision to simply discontinue email hosting under tstt.net.tt.

[ (Update: 5 June 2015)

TSTT did a review to remove inactive accounts @tstt.net.tt around November 2014. From the page at https://blinkentertainment.tt/notice :

Blink is implementing a number of service and infrastructure projects to better serve our customers and continuously improve our standard of quality and reliability. One of these projects involves enhancing our email service capacity by reclaiming resources that had been locked in to maintaining inactive accounts. By freeing up these resources we can offer an even more cost effective and reliable service to customers.

In accordance with our policy, an inactive account is one in which the account owner has not signed in for 3 months or more or, it is a newly activated account in which the owner has not logged in within the first 30 days after being assigned the account.

Effective November 1st 2014 we will be reviewing the status of all tstt.net.tt email accounts with the aim of closing off inactive accounts as defined above. Note this will not affect customers’ Internet Access service, just their TSTT email account. Once an account is declared inactive, all messages, folders, and contacts will be deleted and incoming messages will be blocked. The message sender will receive a reply indicating that the mail could not be delivered. The TSTT customer’s user account name will be held in reserve for an additional 30 days in the event that they have an interest in re-activating the account. After the additional 30 days, if there is still no log on attempts by the user, the account name will be permanently deleted.

]

TSTT has provided more details, including a FAQ and instructions on how to backup or migrate your data (which includes your emails, contacts, calendar and files stored in Google Drive) at
https://sites.google.com/a/tstt.net.tt/google-phaseout/instructions-help
which shows various articles dated May 26 2015

Google’s notice to ISP’s on the termination of Google Apps Partner Edition also mentions two resources of interest: An Administrator transition resource website at https://support.google.com/appstransition/go/admin (for the ISP) and an End User resource website at https://support.google.com/appstransition.

30 May 2015
new version of the TTCS OSSWIN DVD v1.51, a collection of Free and Open Source Software for Windows available for download

The Trinidad and Tobago Computer Society is pleased to announce the release of the TTCS OSSWIN DVD v1.51, a collection of the latest version of Free and Open Source Software for Microsoft Windows (XP/Vista/7/8) and available for download. The collection features a web based interface for browsing programs organised into several categories: Desktop Applications, Educational, Games, Graphics, Internet, Server, Sound and Video and Utilities.

For v1.51, one new program was added : ImageGlass and many software updates including LibreOffice 4.4.3 and Mozilla Firefox 38.0.1.

See the changelog for more details.

Visit the TTCS OSSWIN DVD page at http://www.ttcsweb.org/osswin-dvd/ for more details and to download the DVD as an ISO file for burning onto a DVD or extracting to your harddrive or USB storage device.

16 May 2015
Patch Tuesday for May 2015 brings patches/updates for Microsoft Windows & Office and Adobe Flash & Reader
Every second Tuesday of the month, many software vendors release various security updates and patches for their software. Microsoft and Adobe have all released security updates on Tuesday May 12 2015.

Microsoft Windows

Microsoft released 13 updates for the Windows operating system and Microsoft Office – many of which are rated important or critical. An excellent breakdown of all of the updates can be found at Ghacks.net

Adobe Flash

According to the Adobe security bulletin dated May 12 2015:

“Adobe has released security updates for Adobe Flash Player for Windows, Macintosh and Linux. These updates address vulnerabilities that could potentially allow an attacker to take control of the affected system”

So update asap! Many conferencing solutions (like Adobe Connect) and Flash games use the Flash plugin.

However, if you only use Adobe Flash for watching YouTube videos, YouTube now defaults to HTML5 instead of Adobe Flash for playing videos in Google Chrome, IE 11, Apple Safari 8 and in beta versions of Firefox. So you can uninstall Adobe Flash if you are using these browsers (and not worry about keeping it up to date)

The latest update bumps the latest version of Flash Player for Windows and Mac OS X to version 17.0.0.188.

To determine what version of the Adobe Flash player you have on your Windows, Macintosh or Linux system, visit
http://www.adobe.com/software/flash/about/

To download an offline version of Adobe Flash Player for Windows, Mac OS X and Linux without any adware or bundled third-party offers, visit
http://www.adobe.com/products/flashplayer/distribution3.html

Opera and Chromium browser users, you’ll have to download the flash player installer from http://www.adobe.com/go/getflash.

Windows users should take note that
- the Flash Player in Microsoft Internet Explorer v9 and earlier versions of Internet Explorer,
- the Flash player in web browsers like Mozilla Firefox and Safari
- the Flash player in web browsers in Chromium and Opera
are separate installs. You should install and update versions of Adobe Flash for all three browser variations if you have all three installed.

For Internet Explorer v10 and Internet Explorer v11 (for users for Windows 7 Service Pack 1 and Windows 8), these browsers have Adobe Flash Player built-in and users should update their Internet Explorer browser versions.

Google Chrome browser users has Adobe Flash Player built-in and users should update the Google Chrome browser to the latest version. See https://support.google.com/chrome/answer/95414 on how to do so.

Adobe Acrobat Reader

According to Adobe’s Security Bulletin dated May 12 2015

“Adobe has released security updates for Adobe Reader and Acrobat for Windows and Macintosh. These updates address vulnerabilities that could potentially allow an attacker to take over the affected system. Adobe recommends users update their product installations to the latest versions:
- Users of Adobe Reader XI (11.0.10) and earlier versions should update to version 11.0.11.
- Users of Adobe Reader X (10.1.13) and earlier versions should update to version 10.1.14.
- Users of Adobe Acrobat XI (11.0.10) and earlier versions should update to version 11.0.11.
- Users of Adobe Acrobat X (10.1.13) and earlier versions should update to version 10.1.14.
Read the Adobe’s bulletin at https://helpx.adobe.com/security/products/reader/apsb15-10.html for instructions on how to update Adobe Reader and Acrobat.
13 May 2015
Cable and Wireless Communications Announces New Brands with its merger with Columbus International
Via a Cable & Wireless Communcations (CWC) press release dated May 6 2015 :

Following the completion of the merger of Cable & Wireless Communications (CWC) and Columbus International on 31 March 2015, CWC today announces new corporate and consumer-facing brands for the combined Group, which will be rolled out in the coming months in markets where the necessary regulatory approvals have been obtained.
- CWC will operate under the corporate banner C&W Communications.
- A refreshed Flow will be the unified consumer-facing brand throughout the Caribbean, replacing the former LIME and Flow businesses. (Mas Movil and BTC will be retained as the consumer-facing brands in Panama and The Bahamas, respectively).
- C&W Networks will be the brand representing the wholesale submarine and terrestrial fibre optic cables of C&W Communications, and the former Columbus Networks/JVCO business.
- C&W Business will be the business-facing brand across the whole group, replacing the former CWC Business Solutions, Columbus Business Solutions and Sonitel brands.
8 May 2015