Back in August, Google announced that it would soon require developers to verify before their apps could be installed on your Android device if you tried to install them outside of Google Play. Another way to look at the situation would be Google blocking you from sideloading apps, assuming they were from a developer who had not yet verified with Google. Whichever way you look at it, the decision has not be met with enthusiasm from everyone in the world of Android.
Today, Google is stepping back some from being so heavy-handed in this verification approach. They announced that they are working on a new advanced flow that would allow “experienced” users or those “who have a higher risk tolerance” to still sideload apps from unverified developers. This process would have them accept the risks, help resist coercion and reduce folks from being tricked into bypassing safety checks, etc.
Here’s more on this idea:
While security is crucial, we’ve also heard from developers and power users who have a higher risk tolerance and want the ability to download unverified apps.
Based on this feedback and our ongoing conversations with the community, we are building a new advanced flow that allows experienced users to accept the risks of installing software that isn’t verified. We are designing this flow specifically to resist coercion, ensuring that users aren’t tricked into bypassing these safety checks while under pressure from a scammer. It will also include clear warnings to ensure users fully understand the risks involved, but ultimately, it puts the choice in their hands. We are gathering early feedback on the design of this feature now and will share more details in the coming months.
Google says they are only in the early stages of the design of this new sideloading feature and plans to share more in the coming months.
As a reminder, all of this sideloading and verification stuff has nothing to do with developers who distribute through Google Play, as they have to be verified in order to do so.
Great Google, now allow people to root their phones and use the latest features. It's ridiculous that they put a server side verification for things like that. Let ME assume the risk. That's what it's been like since Windows 95. I can't use AI, or Google wallet, or other apps because "safety and security". Let ME DECIDE. We aren't dumb.
You might not be, but most general users are.
And this is why it should be a opt in and not default like they did in the past. I swear the Android Dev team is regressive.
Are you arguing that you should still be allowed to use financial apps with a rooted device?
So glad they're rolling this one back.
Google could have avoided the public backlash by declaring that they would add
a simple toggle switch in Developer Options for sideloading Apks.
Power Users have never had a problem with Google making Android more secure. We've only asked for an option to continue to sideload at our own discretion. Adding these extra security steps in order to sideload an APK is the perfect compromise.
Amazing