Amazon performs U-turn after dropping encryption from Fire tablets
Retailer will bring back encryption feature with spring Fire OS update
Amazon is set to bring encryption back to its Kindle and Fire devices, after its decision to drop the feature in its most recent update sparked customers' anger.
The Fire OS 5 update left users without the ability to encrypt data on its Fire tablets and Kindle ereaders, prompting users to express their displeasureon the company's Kindle support forums.
Despite Amazon CTO Werner Vogels' assurances that "we are very strong believers that encryption should be in the hands of our customers", customers apparently did not use the feature, leading Amazon to remove it. The decision came as Apple battles the FBI over weaking iPhone security.
However, Amazon has now performed a U-turn, telling Engadgetthat it will re-introduce the feature with its next update.
"We will return the option for full disk encryption with a Fire OS update coming this spring," a spokesperson said.
04/03/2016: Amazon drops encryption from Kindle and Fire tablets
Amazon has removed the ability to encrypt data on its Fire tablets, Kindle eBooks and other streaming devices with the latest update to its Fire OS.
The move could leave users of its devices without the means to secure confidential documents, financial information and other private information.
The removal was discovered by security researcher David Scovetta, whotweeted a screen grab of the Fire HD tablet update, which read: "Your device has encrypted data. However, device encryption is no longer supported in Fire OS 5. Follow the steps outlined below to save your data."
Users on Amazon's Kindle support forums have been up in arms over the removal.
Fire OS 5 removes the security feature at a time when other companies are taking a harder stance on encryption. Apple is fighting the FBI over the law enforcement agency's attempts to force it to create a backdoor into the iPhone.
Amazon's Fire OS is based on a fork of Android that supports full-disk encryption by default. Fire OS 5 is the first release to use the Android 5.0 Lollipop code.
The update leaves users with two choice: update and lose encryption or stay on an operating system that could potentially harbour vulnerabilities. Neither are desirable from a security perspective.
In a press statement, Amazon said that when Fire OS 5 was released it "removed some enterprise features that we found customers weren't using".
"All Fire tablets' communication with Amazon's cloud meet our high standards for privacy and security including appropriate use of encryption," it added.
In other words, Amazon encrypts data on the go but not when it is stored locally.
The decision to remove encryption is at odds with Amazon's support for Apple in its fight against the FBI. Amazon chief technology officer Werner Vogels also voiced support for Apple at the Mobile World Congress recently.
According to the Arc tech blog, he said that the moment backdoors are in encryption, "you can no longer trust the technology that you have that you are the only one has access to your data."
"So we are very strong believers that encryption should be in the hands of our customers and they should be the ones who decide who has access to the data and nobody else," he said.
The ultimate law enforcement agency guide to going mobile
Best practices for implementing a mobile device programFree download
The business value of Red Hat OpenShift
Platform cost savings, ROI, and the challenges and opportunities of Red Hat OpenShiftFree download
Managing security and risk across the IT supply chain: A practical approach
Best practices for IT supply chain securityFree download
Digital remote monitoring and dispatch services’ impact on edge computing and data centres
Seven trends redefining remote monitoring and field service dispatch service requirementsFree download