Will users of Amazon's Silk browser be trading privacy for efficiency?
Amazon’s Kindle Fire’s cloud-based web browser, Silk, is already raising questions from security experts.
Silk uses the ultra-high speed connectivity of Amazon’s Elastic Cloud Computing (EC2) service to make page load times significantly shorter – which means that at times the user will connect to Amazon instead of directly to a website.
Mark Lennihan/AP
Just one day after its unveiling, Amazon’s Kindle Fire’s cloud-based web browser, Silk, is already under fire by security experts and privacy advocates for endangering the confidentiality of user data.
Skip to next paragraphRecent posts
-
12.19.11
End to an era at legendary Paris bookshop Shakespeare and Company -
12.19.11
'Daughter of Smoke and Bone' film rights acquired by Universal -
12.16.11
Better World Books' bestseller list: more classics than new titles -
12.16.11
More books, more choices: why America needs its indies -
12.16.11
Is Slate's Amazon-defending blogger really a 'moron'?
Subscribe Today to the Monitor
For many techies, the coolest part of the Fire isn’t the device itself, but the software, specifically Amazon Silk. The web browser uses the ultra-high speed connectivity of Amazon’s Elastic Cloud Computing (EC2) service to make page load times significantly shorter. When a user navigates to a webpage, Silk offloads a portion of the work to Amazon’s servers to speed up load time – which means that the user will connect to Amazon instead of directly to a website.
Amazon itself explains this in its Amazon Silk Terms & Conditions: "The content of web pages you visit using Amazon Silk passes through our servers and may be cached to improve performance on subsequent page loads.”
The problem? That also gives Amazon a complete record of your Web browsing history. Those same Terms & Conditions also reveal that, along with your browsing history, Amazon will log IP and MAC addresses, which it can store for up to 30 days.
What’s worse, even secure HTTPS connections, like online banking, will go through Amazon. Theoretically, there should be no interruption in the chain between you and any secure HTTPS site you visit. When you use Silk on the cloud (default mode on the Fire), Amazon will be a middleman even in these so-called secure connections.
Based on what we know so far, the security and privacy implications are frightening. Under the Patriot Act, Amazon is subject to government requests for information about any individual user who is under investigation. The Patriot Act has relatively low due process restrictions. Under the controversial law, enacted after the September 11 attacks, the government can even prevent Amazon from notifying targeted individuals that their data is being turned over to authorities.
Of course, government requests aside, the Silk browser still reveals a treasure trove of user data for Amazon to use as it wishes.
For every user that browses on Silk, Amazon will have access to his or her IP or MAC addresses, as well as a thorough account of each user’s browsing history and profile.
These comments are not screened before publication. Constructive debate about the above story is welcome, but personal attacks are not. Please do not post comments that are commercial in nature or that violate any copyright[s]. Comments that we regard as obscene, defamatory, or intended to incite violence will be removed. If you find a comment offensive, you may flag it.