Google re-challenges disk encryption with Android 6.0 Marshmallow

The ability to automatically encrypt all data in the storage with Android 5.0 Lollipop (Full Disk Encryption function) appeared rumorily, but it suffered from problems such as access speed dramatically dropped, and finally turned off by default The state is changed,Abandon automatic encryption functionI was forced to do. However, Google is using the new OS "Android 6.0 Marshmallow"It is clear that it will try again for full disk encryption.

Android 6.0 Compatibility Definition - android-cdd.pdf
https://static.googleusercontent.com/media/source.android.com/en//compatibility/android-cdd.pdf

Android 6.0 Will Finally Require Manufacturers To Enable Full-Disk Encryption By Default On New Devices
http://www.androidpolice.com/2015/10/19/android-6-0-will-finally-require-manufacturers-to-enable-full-disk-encryption-by-default-on-new-devices/

The development guide Google has developed for the developer "(PDF)Compatibility Definition Document (CDD)Android 6.0 Marshmallow reveals that the full disk encryption function is adopted and asks Android to develop terminal software so that encryption turns on when the initial setup work is completed. Since Android terminal developers need to develop software conforming to CDD in order to ensure OS compatibility, Android 6.0 Marshmallow terminals released from manufacturers should default to full disk encryption function It is likely to become.


The default ON designation of the full disk encryption function is requested only for terminals with AES encryption performance of 50 MiB / sec or more, and for terminals that have already been released with the full disk encryption function being off by default Does not require that you turn this feature on by default after updating to Android 6.0 Marshmallow, so some devices will not be forced to enforce the full disk encryption function even on Android 6.0 Marshmallow.


By standardizing the full disk encryption function, some users may find it inconvenient because the pass code setting is required. There also seems to be concern about performance deterioration like occurred in Android 5.0 Lollipop does not occur.

In the new OS "Android 6.0 Marshmallow" it is important to note whether the balance between "enhanced security" and "performance degradation" by encryption is well-formed.