Yesterday, we learned that Google is no longer requiring full-disk encryption on Lollipop despite being so excited about telling the world that Android L (Android 5.0) would have it by default last year. However, some smartphones experienced storage performance issues with the Android 5.0 encryption according to tech website AnandTech after running a benchmark test. It was an unfortunate move but Google had to back away from its earlier decision for the benefit of most Android users.

Newer smartphones running Android 5.0 Lollipop should have the encryption “on” by default but it’s no longer the case. Full encryption out of the box is expected but the latest models like the recently-launched Samsung Galaxy S6 isn’t encrypted by default. The only units we know encrypted are the Nexus 9 and Nexus 6 from Google.

Google didn’t officially announce this change but manufacturers said there was a small change in the Android Compatibility Definition document (PDF) in ‘Section 9.9 Full-Disk Encryption’. In summary, Google simply said full-disk encryption must be enabled if device has a lockscreen and that it should be enabled all the time. Google said “should” but it also noted that it was only a recommendation. Right now, turning full-disk encryption is not really a requirement the OEMs should impeccably follow.

The intention to encrypt phones is a great idea because this would save mobile devices from being hacked or compromised but there have been performance issues lately as a result. Google might require this full-disk encryption in future versions of Android but we’re still not sure. It’s the responsibility of OEM’s to do that if they deem it is as necessary.

Engadget immediately reached out to Google regarding this issue and true enough, the Internet giant admitted there were “performance issues on some Android partner devices”. Here is Google’s official statement:

“In September, we announced that all new Android Lollipop devices would be encrypted by default. Due to performance issues on some Android partner devices we are not yet at encryption by default on every new Lollipop device. That said, our new Nexus devices are encrypted by default and Android users (Jelly Bean and above) have the option to encrypt the data on their devices in Settings —> Security — >Encryption. We remain firmly committed to encryption because it helps keep users safe and secure on the web.”

There you have it ladies and geeks. Google has confirmed that Android Lollipop devices are “not yet” encrypted by default. Only new Nexus devices are encrypted while other Android users, at least those using Jelly Bean and above, can opt to encrypt their devices. That “not yet” on the statement means a lot and we should still expect full-disk encryption by default someday. Google even reiterated it’s commitment to encryption because “it helps keep users safe and secure on the web” so I guess this issue won’t really be over yet.

VIA: Engadget