The mandate of the ICTA

Pursuant to the ICT Act 2001, the Authority is empowered to “take steps to regulate or curtail harmful and illegal content on Internet and other information and communication services” (Section 18(1)m).

The ICTA’s project on CSA material filtering is also pursuant to the recommendations of the Budapest Convention on Cybercrime 2001 and of the UN Committee on the Rights of the Child. Article 9 of the Budapest Convention on Cybercrime 2001 specifies that each country shall establish measures to criminalize the offences related to child pornography, in particular making available, distributing or transmitting child pornography through a computer system. In its 2014 report on Digital media and children’s rights, the UN Committee on the Rights of the Child has called on regulatory agencies to demonstrate responsibility in developing standards relevant to children’s rights and ICTs.

The Implementation of CSA online filtering solution

Back in Feb 2011 until Dec 2023, the Information and Communication Technologies Authority (ICTA) implemented a centralised CSA filtering solution to block access to online child sexual abuse material. This ICTA’s CSA filtering solution blocked access to CSA sites for Internet users in the Republic of Mauritius and was based on international partnership by making use of a non-intrusive method of blacklisting. This CSA filtering solution used the Internet Watch Foundation blacklist in order to prevent Internet users in Mauritius from accessing online CSA materials..

However, as a result of the ending of the previous centralised CSA filtering solution contract, the Authority has now opted for a non-intrusive decentralised CSA filtering solution to be set up by each respective ISP by considering:

  • Section 32 (5) (a), (b) of the ICT Act

‘(5) (a) Nothing in this Act shall prevent a public operator or any of his employees or agents from intercepting, withholding or otherwise dealing with a message which he has reason to believe is-

(i) indecent or abusive;

(ii) in contravention of this Act;

(iii) of a nature likely to endanger or compromise State’s defence, or public safety or public order.

(b) Where a message is withheld pursuant to paragraph (a), the operator shall forthwith refer it to the Authority for such written directions as the latter may think fit.’

and

  • Section 14 of the ISP licence conditions

‘14 Cyber Laws

14.1   The licensee shall take all the necessary measures to discourage and prevent the flow of content which is grossly offensive or of an indecent, obscene, or menacing character or infringing intellectual property rights and international and domestic cyber laws.

14.2 The licensee shall be liable and assume the sole responsibility for any claim or damage arising out of default of the licensee or any breach of section 14.1 above.’

Such a decentralised approach presents the advantage of being more cost effective and less complex from a technical standpoint. Following technical discussions held with the three ISPs offering services to the public in general (MT, Emtel and MTML), the Authority has requested these three ISPs to undertake the implementation of their respective CSA filtering solution on a proof of concept (PoC) basis with the use of the Arachnid CSA blacklist.

The Authority then intends to issue a Directive to all local ISPs to implement their respective CSA filtering solution after the successful implementation of the PoC. It is to be noted that the monthly logs compiled for this project (Number of attempts to access CSA websites and the number of Mauritian IP addresses trying to access CSA websites which were blocked) has stopped since December 2023 when the contract ended. Same will resume after the issuance of the Directive to all the local ISPs.

Click here to view statistics

 

In order to fight and prevent child sexual abuse (CSA) online, the Information and Communication Technologies Authority (ICTA) has adopted a CSA solution. Mauritius was the first African country to implement such a centralised filtering solution to protect children from sexual abuse online.

The ICTA’s CSA solution filters access to CSA sites for Internet users in the Republic of Mauritius. This filtering mechanism is based on international partnership and uses the method of blacklisting to prevent Internet users in Mauritius to access to CSA material. The objective is three-fold:

  • Offer greater protection against accidental viewing
  • Reduce the availability and circulation of CSA material in Mauritius
  • Limit the trauma experienced by the victims and their families.
The mandate of the ICTA

Pursuant to the ICT Act 2001, as amended, the Authority is empowered to “take steps to regulate or curtail harmful and illegal content on Internet and other information and communication services” (Section 18(1)m).

The ICTA’s project on CSA material filtering is also pursuant to the recommendations of the Budapest Convention on Cybercrime 2001 and of the UN Committee on the Rights of the Child. Article 9 of the Budapest Convention on Cybercrime 2001 specifies that each country shall establish measures to criminalize the offences related to child pornography, in particular making available, distributing or transmitting child pornography through a computer system. In its 2014 report on Digital media and children’s rights, the UN Committee on the Rights of the Child has called on regulatory agencies to demonstrate responsibility in developing standards relevant to children’s rights and ICTs.

The CSA filtering mechanism

The CSA filtering is the flagship of the ICT Authority’s commitment in the prevention of CSA. It was launched in February 2011 and further reinforced thanks to a cooperation with the UK-based NGO Internet Watch Foundation (IWF) as from 2013.

The CSAM filtering mechanism set up by the ICTA makes use of the IWF database, which is updated daily and blacklists CSA websites or pages. Once IWF adds any website or web page to its blacklist, the ICTA’s filtering system is automatically updated and the newly added websites or web pages can no longer be accessed to from Mauritius.

In order to implement its centralised online content filtering solution, the ICT Authority chose the Netclean Whitebox technology which had been developed specifically for the task of detecting and blocking CSA material. The CSA filtering set up was initially hosted at the ICT Authority and was connected to all the local ISPs providing Internet access to the public in the Republic of Mauritius until 2014.

After 2014, the CSA filtering set up has been shifted on a cloud-based mode whereby no hardware was required any longer at the ICTA premises. Since November 2020 as at date, Netsweeper is the new service provider for CSA filtering which uses the same technology as before which is also cloud based.

Efficiency and Advantages

With the CSA filtering solution, the ICTA is ensuring that ISPs are supplying their customers with an Internet connection which is clean from access to CSA websites, in the same way that a water company makes sure that the water provided in its pipes is uncontaminated. It has several advantages:

  • Little effect on the passage of network traffic and on performance
  • Lower cost than one-step filters
  • Free from the problems inherent to proxy servers
  • Ideal for country gateway implementations

Since its implementation in 2011, the ICTA’s CSA filtering solution has allowed the filtering of 1,835,064 attempts (hits) to access CSA websites by Mauritian users and the blocking of 110,026 Mauritian IPs addresses.

Click here to view statistics

Click here to view FAQ

 Statistics :

Child Sexual Abuse (CSA) Online Content Filtering System

Under section 18 (1) m of the ICT Act 2001 of Mauritius, one of the functions of the ICT Authority is to “take steps to regulate or curtail harmful and illegal content on Internet and other information and communication services”.

To fulfill this mandate, the ICT Authority has launched on the 8th of February 2011, a centralised online content filtering solution to filter access to child sexual abuse (CSA) sites for Internet users in Mauritius. The deployment of this filtering system will reduce the availability and circulation of child abuse images in Mauritius – and limit the trauma experienced by victims’ when their images circulate on the Internet. At the same time, it will protect against accidental viewing, giving people in Mauritius, the confidence in the Internet they deserve.

In order to implement this centralised online content filtering solution, the ICT Authority has chosen the Netclean Whitebox technology which has been developed specifically for this task in 2006. This CSA filtering set up was hosted at the ICT Authority and was connected to all local ISPs providing Internet access to the public in Mauritius until June 2014 after which the CSA filtering set up has been shifted on a cloud-based mode whereby no hardware is required at the ICTA premises. From November 2020 to November 2023, Netsweeper Inc. is the new service provider for CSA filtering which uses the same technology as before which is also cloud based.

The system is based on a hybrid Border Gateway Protocol (BGP) and Uniform Resource Locator (URL) filtering system. The first step is where a server containing the list of blocked sites (blacklist) checks the IP addresses of these sites and advertises the routes for these sites to go to a filtering server hosted at the ICT Authority rather than the destination web site. The second step is where the filtering server checks the URL against the blacklist using packet inspection and if blocked then the request is not passed on to the destination web site but redirected to a blocking server and displays a block page. If the site is not on the list, the filter passes the request as normal and the site is accessed by the ISP customer (“clean traffic”). The URL filtering list for this component will be the list provided by the Internet Watch Foundation (IWF), a non-profit organization that is widely recognised as one of the best in the world at managing a URL list of CSA sites coupled with the Interpol blacklist.

This system has the following advantages:

It has very little effect on the passage of most network traffic so has little effect on performance.

It has a lower cost than one-step filters that need to filter all of the ISP’s traffic.

As it does not have a proxy server it does not suffer from the potential problem of requests being changed to the proxy IP address from the customer’s original one.

As it uses external BGP it can be hosted external to the ISP and is ideal for country gateway implementations

The centralised system can be used as  a cyber security infrastructure shared among ISPs and managed by the regulator

With the implementation of this CSA filtering solution, the regulator is ensuring that ISPs are supplying their customers with an Internet connection which is clean from access to CSA websites in the same way that a water company makes sure that the water provided in its pipes is uncontaminated.

Click here to view FAQ

Click here to view statistics

(Please note that you will be redirected to stats section)