Google relaxes mandatory Android Lollipop encryption policy

  • Hi there and welcome to PC Help Forum (PCHF), a more effective way to get the Tech Support you need!
    We have Experts in all areas of Tech, including Malware Removal, Crash Fixing and BSOD's , Microsoft Windows, Computer DIY and PC Hardware, Networking, Gaming, Tablets and iPads, General and Specific Software Support and so much more.

    Why not Click Here To Sign Up and start enjoying great FREE Tech Support.

    This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.
  • Hello everyone We want to personally apologize to everyone for the downtime that we've experienced. We are working to get everything back up as quickly as possible. Due to the issues we've had, your password will need to be reset. Please click the button that says "Forgot Your Password" and change it. We are working to have things back to normal. Emails are fixed and should now send properly. Thank you all for your patience. Thanks, PCHF Management

PCHF IT Feeds

PCHF Tech News
PCHF Bot
Jan 10, 2015
52,116
26
pchelpforum.net
nexus-6-470-75.jpg

After having announced last year that new Android devices shipping with Lollipop would come with full disk encryption, Google is now quietly relaxing its policy. Although prior versions of the Android operating system used on popular smartphones and tablets today supported optional encryption, Google's policy would have required manufacturers to turn encryption on when devices ship.

When Lollipop, also known as Android 5.0, was announced, Google spokesperson Niki Christoff said in an interview with The Washington Post: "As part of our next Android release, encryption will be enabled by default out of the box, so you won't even have to think about turning it on."

Separately, Google detailed that encryption of the user data partition would occur at first boot.

Change in policy


But somewhere between Google's original announcement of Lollipop in September 2014 and today, the Android OS-maker changed its policy from making encryption a requirement to something that is "very strongly recommended."

"For devices supporting full-disk encryption, the full-disk encryption should be enabled all the time after the user has completed the out-of-box experience," Google specifies in its Android Compatibility Definition document. "While this requirement is stated as should for this version of the Android platform, it is very strongly recommended as we expect this to change to must in the future versions of Android."

Google hasn't commented on why it's reverting back to its old policy for device encryption, but Ars Technica speculates the decision may be related to performance. The site postulates that performance in certain tasks is slower on the Nexus 6 compared to the Nexus 5 due to encryption.

"The performance problems can be offset by using faster flash memory, faster file systems like F2FS, and chips that are better at encrypting and decrypting data quickly, but phones and tablets take long enough to design that OEMs will need time to make these changes," Ars Technica's Andrew Cunningham writes.

For now, consumers who use an Android phone or tablet running Android Lollipop should turn on encryption themselves if they want a more secure mobile computing experience. On most Android devices, you can go to settings, security, and then choose to encrypt your phone.

mf.gif

ivswehPTsWI


Continue reading...