Amazon has confirmed that version 5 of Fire OS for its Fire tablet removes support for device encryption.
In a statement sent to TechCrunch the company said: “In the fall when we released Fire OS 5, we removed some enterprise features that we found customers weren’t using. All Fire tablets’ communication with Amazon’s cloud meet our high standards for privacy and security including appropriate use of encryption.”
So, in other words, Amazon is still encrypting data transfers from Fire tablets to external servers but content stored locally on a Fire tablet is not being afforded such protections.
The dropping of support for Fire OS 5 device encryption was spotted earlier by EFF member David Scovetta who tweeted the following screenshot from the Fire tablet user guide:
While Apple fights the good fight, @Amazon removes encryption as option from FireOS 5 | @csoghoian @normative @eff pic.twitter.com/nggBdtFG7j
— David Scovetta (@davidscovetta) March 3, 2016
Disrupt 2026: The tech ecosystem, all in one room
Your next round. Your next hire. Your next breakout opportunity. Find it at TechCrunch Disrupt 2026, where 10,000+ founders, investors, and tech leaders gather for three days of 250+ tactical sessions, powerful introductions, and market-defining innovation. Register now to save up to $400.
Save up to $300 or 30% to TechCrunch Founder Summit
1,000+ founders and investors come together at TechCrunch Founder Summit 2026 for a full day focused on growth, execution, and real-world scaling. Learn from founders and investors who have shaped the industry. Connect with peers navigating similar growth stages. Walk away with tactics you can apply immediately
Offer ends March 13.
Amazon’s move has come to light at a time when Apple is fighting a high profile legal battle against the FBI in support of encryption. The agency has demanded Apple weakens the security of iOS to enable the FBI to hack into a locked iPhone 5c. Apple is refusing — warning that deliberately weakening its software risks the security of all iOS users.
Multiple tech companies have come out in support of Apple’s stance, with several filing supportive amicus briefs to the court. Apple and others are calling for a proper debate to be held in Congress on whether the security services should have the right to request companies perforate their own encryption systems on demand. (Ironically enough, Amazon is one of the companies that has publicly backed Apple’s stance by adding its name to a joint amicus brief, along with Microsoft, Facebook, Google and others.)
Of course, if a company removes encryption itself — as Amazon is doing in the case of device encryption for its Fire tablets — then the debate becomes moot. Law enforcement, security agencies and hackers don’t need any special backdoors to be built; without encryption protecting local storage they can easily obtain the user’s data from the hardware.
And, ergo, as others have noted, opt-in security is insecurity…
Opt-in security is insecurity: Amazon removes encryption support from Fire tablets because nobody used it https://t.co/xQH5KOJ99D
— SwiftOnSecurity (@SwiftOnSecurity) March 3, 2016
Claiming users weren’t using the encryption feature, and therefore that encryption is unnecessary, is of course a disingenuous argument on Amazon’s part. Users also hate using strong passwords — is Amazon going to encourage users to ditch those too?
The company’s motivation for dropping device encryption here might be no more nefarious than a desire to try to improve the performance of cheap, low power hardware (the 7-inch Fire slate can cost as little as $50 new). Whatever the truth, Amazon’s move underlines that buying budget hardware of any kind can be a false economy when it comes to security.
