fervidness OS 5 , the latest version of the operating system that drives Amazon ’s more sophisticated tablets , removed a full - gadget encryption option uncommitted in the premature waiver . Amazon says it was because few user enabled it , but that ’s the faulty way to approach encryption . A few days after a kerfuffle come up , the company says it will restitute the option in a month or two . It should do even more .

The story just bollocks up last week after a security research worker point out a release note he ’d read . While Fire OS 5 shipped last spill and Amazon drug user had been talk over on forums for months , it was only with the release of this O update to older Fire devices that the consequence blew up . The timing turn it viral , since it came just asAmazon file a friend - of - the - courtroom briefalong with other technical school company in favor of Apple ’s position in jib the FBI ’s All Writs Act request for a custom version of iOS .

While Apple struggle the good fight,@Amazonremoves encryption as option from FireOS 5 |@csoghoian@normative@effpic.twitter.com/nggBdtFG7j

Amazon ostensibly did n’t disable encryption because of fear of the U.S. or other governments . Rather , based on what the company has said and the timetable , it ’s because this was a seldom - used feature that requires technical reasons to keep working . Why not dispose something few are using ? Well , because it assist users ’ privacy .

Fortunately , the company is also listening to customers . belated Friday nighttime , the firm sent out a statement to journalist : “ We will return the option for full disk encoding with a Fire OS update come this leap . ”

I ’d argue that Amazon should go a measure further , and enable encoding by default on all Fire twist that are subject of deal the extra computational load , unless the user specifically opts out .

Encrypting everywhere

Full - record encoding ( FDE ) refers to protecting the total mountable file organisation of a disk drive , whether a hard drive or SSD in a computer , or scoot storage in a smartphone or tablet . When a computer is shut down or a peregrine gimmick is locked , the drive or equipment has zero value to an assaulter without the appropriate encryption tonality . ( run computers can besusceptible to cardinal descent , as it ’s stored in RAM . )

When mobile operating systems added FDE , it ’s more suitably called “ full - gimmick encoding , ” because nearly all interaction with the machine is limited until a password , PIN , or other method acting unlock an encoding keystone , which allow the OS to decrypt and apply the file organisation . ( Apple has a bypass to perform OS and other upgrade without the passcode , but that ’s one of the things the troupe isreportedly work on removingfrom next variant , in light of the FBI case . )

The advantage of FDE is that it dramatically reduces the possibility that someone who obtain your gimmick will be able-bodied to educe anything useful from it . Amazon admittedly has a far modest useful profile of tone-beginning on its Fire OS devices . While they ’re designed to be fully capable tab , the reality is thatthey’re sell and used mostly as media consumption devices , relying on swarm - stored culture medium that ’s stream or downloaded for local playback .

Fire atomic number 8 proprietor can download software package from Amazon ’s App Store or sideload other apps designed to be given in Fire OS or Android . Some likely pocket-size percent of owner for sure utilize apps that hive away private data locally , even if it ’s also synced to a swarm service .

Fire osmium is an branch , or “ fork , ” of Android OS , and version 5 parallels Android 5 ( Lollipop ) , which amount out with strong encryption for data stored on the equipment , very similar to that in iOS . But that encoding was always optional because of execution issues with certain Android modelling .

It ’s possible that many Fire devices are too underpowered to scat FDE in effect . innovative smartphones and tablets plan for robust exercise include hardware - free-base encoding chips that effectively eliminate the processing price of layer unattackable protective covering . Given Amazon ’s price points , most Fire devices perform encoding with the independent CPU , and FDE might render those devices scantily usable .

However , it ’s not supposititious that people and institutions of all stripes will set about to make access to our devices . It ’s a skilful move on Amazon ’s part to re - activate the encryption pick , but I ’d argue the company should go a step further .

On Fire devices capable of using encryption without hobble operation , the Fire OS update should have users know it ’s an selection and suggest enabling it . And Amazon should be designing all its next devices with the surplus few penny of circuitry necessary to provide default FDE without user yield the price .

Making devices amply encrypted by default option is a user benefit . It may wind up need more customer service , but it ’s the way all hardware call for to take — not just now , but years ago . Through its new update , Amazon can offer that retroactive option .