Box CEO Aaron Levie is only 31 years old, but he is already a Silicon Valley veteran. Levie and his classmates founded the cloud storage and file …
(Reuters) – Amazon said it plans to restore an encryption feature on its Fire tablets after customers and privacy advocates criticized the company for quietly removing the security option when it released its latest operating system.
Above: The new Amazon Fire tablet is displayed during a media event introducing new Amazon products in San Francisco, California September 16, 2015.
“We will return the option for full-disk encryption with a Fire OS update coming this spring,” company spokeswoman Robin Handaly told Reuters via email on Saturday.
Amazon’s decision to drop encryption from the Fire operating system came to light late this week. The company said it had removed the feature in a version of its Fire OS that began shipping in the fall because few customers used it.
On-device encryption scrambles data so that the device can be accessed only if the user enters the correct password. Well-known cryptologist Bruce Schneier called Amazon’s removal of the feature “stupid” and was among many who publicly urged the company to restore it.
Apple’s legal battle over U.S. government demands that the iPhone maker help unlock an encrypted phone used by San Bernardino shooter Rizwan Farook has created unprecedented attention on encryption.
Amazon.com this week signed on to a court brief urging a federal judge to side with Apple.
(Reporting by Jim Finkle in Boston; Editing by Matthew Lewis)
It’s a heartache, nothing but a heartache. Hits you when it’s too late, hits you when you’re down. It’s a fools’ game, nothing but a fool’s game. Standing in the cold rain, feeling like a clown.
When singer Bonnie Tyler recorded in her distinctive raspy voice “It’s A Heartache” in 1978, you’d think she was an oracle of sorts, predicting the rocky road that encryption would have to travel.
Just a year earlier in 1977 the Encryption Standard (DES) became the federal standard for block symmetric encryption (FIPS 46). But, oh, what a disappointment encryption DES would become. In less than 20 years since its inception, DES would be declared DOA (dead on arrival), impenetrable NOT.
The director of the NSA, Admiral Michael Rogers, just admitted at a Senate hearing that when Internet companies provide copies of encryption keys to law enforcement, the risk of hacks and data theft goes way up.
The government has been pressuring technology companies to provide the encryption keys that it can use to access data from suspected bad actors. The keys allow the government “front door access,” as Rogers has termed it, to secure data on any device, including cell phones and tablets.
Rogers made the statement in answer to a question from Senator Ron Wyden at the Senate Intelligence Committee hearing Thursday.
Wyden: “As a general matter, is it correct that anytime there are copies of an encryption key — and they exist in multiple places — that also creates more opportunities for malicious actors or foreign hackers to get access to the keys?
View the exchange in this video.
Security researchers have been saying for some time that the existence of multiple copies of encryption keys creates huge security vulnerabilities. But instead of heeding the advice and abandoning the idea, Rogers has suggested that tech companies deliver the encryption key copies in multiple pieces that must be reassembled.
“The NSA chief Admiral Rogers today confirmed what encryption experts and data scientists have been saying all along: if the government requires companies to provide copies of encryption keys, that will only weaken data protection and open the door for malicious actors and hackers,” said Morgan Reed of the App Association in a note to VentureBeat.
Cybersecurity has taken center stage in the halls of power this week, as Chinese president Xi Jinping is in the U.S. meeting with tech leaders and President Obama.
The Chinese government itself has been linked with various large data hacks on U.S. corporations and on U.S. government agencies. By some estimates, U.S. businesses lose $ 300 billion a year from Chinese intellectual property theft.
One June 2nd, the Senate approved a bill called the USA Freedom Act, meant to reform the government surveillance authorizations in the Patriot Act. The Patriot Act expired at midnight on June 1st.
But the NSA has continued to push for increased latitude to access the data of private citizens, both foreign and domestic.