[Cryptography] Vice: Amazon removes full disk encryption from its Android devices

Gé Weijers ge at weijers.org
Fri Mar 4 19:58:03 EST 2016


On Thu, Mar 3, 2016 at 4:33 PM, Tom Mitchell <mitch at niftyegg.com> wrote:

>
> In their defense encryption on a number of android devices  has been
> default turned
> off for years.   The power drain and performance overhead was too much and
> turning
> if off made marketing and customers happy with the snappy response of
> their new toy.
>
>
The low cost hardware used by Amazon may not have a TPM or Secure Element
embedded, so secure encryption would require really high-entropy passwords.
And rather than pretending that there's security they removed the
encryption altogether.

If this is the case (and that's a big if) the reason for the removal may
not be collusion with the government. Bad crypto can get you in trouble
these days.

https://www.ftc.gov/news-events/blogs/business-blog/2016/01/ftc-takes-toothless-encryption-claims-dental-practice



--
Gé
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20160304/e3db3614/attachment.html>


More information about the cryptography mailing list