MobileRead Forums - View Single Post - Android to block sideloading and unsigned apps

8833 · 09-03-2025, 02:22 AM

It depends how it'll be implemented in practice, but for that we can only wait.

Skimming through the blog, I can see what's the goal. Blacklisting a signature (developer ID) is much easier than hunting for a known pieces of malware in non-play signed apps. Android validates the signature anyway as of today before letting you install the apk, so it could be even ad-hoc fake one but it has to be there. I guess that the identity validation for non-play store developers will get hardened over time to make it hard enough for the bad guys to stop them mass registering identities for malicious distribution purposes. Another reasons for this is scanning the app before signing it. That's actually even more important that the ability of disabling it efficiently on all devices. Although, scanning for viruses is one thing, scanning for behavior/code, aka reverse-engineering is another. With the gate keeping in place they'll be able to reject apps which miss-behave according to their opinion, or to be more polite they'll just quickly patch the OS to prevent this and that, i.e. break the apps.

With all the good intentions, the question is how they'll honor the freedom?

- Will they let you turn it off via developers settings? I guess not. If yes, perhaps it'll be something like running iOS apps on macbook, you can run them but only if csr is enforced, but if you need to turn it off suddenly you can't run any iOS app from AppStore. However that'll be fine for me. I already have device with play, and de-bloated device without it to run only FOSS apps.

- What if an app from a hobbyist get blacklisted? Are they banned completely (all their apps, by developer ID)? Are they blacklisted forever, because they are deemed now as high-risk or intentionally malicious developers? Are their details passed over to law enforcement to let them start forensic investigation if they distributed the malware consciously or unconsciously (being compromised without knowledge)? etc.

IMO, the whole problem is that people tend to use one device for everything. I know, that was the exact intention of smartphones, but it's silly and risky. Nowadays hardware is really cheap so why take so much risk? I use a nice simple low-performance device for managing all my documents, etc, but no games or anything risky, and another computer on which I have zero personal information, to be stress free used for anything else, like games, apps obtained from wherever, visiting whatever corners of the internet with no fear of having it nuked by malicious javascript, etc. Same with mobile, I have one old phone for just the token apps, banking apps, which I don't even use for internet browsing, another one as my daily driver. If they force me to split the daily driver phone into two: one with play to run the simple everyday apps like an app for parking tickets, another for my current FOSS choice, that'll be an annoyance as I'll have to start carrying 2 phones, but it's not the end of the world.

I like Linux, and the true user freedom it brings with. Too bad that the non-x86 devices are so hard to get Linux onboard. However there are interesting choices in the tablet space already, for example https://www.chuwi.com/product/items/...10-max-en.html The only real drawback of that device is short battery life. The performance is really good enough for a tablet. They packed SoC in 14nm inside, imagine what would be the efficiency if it was made with 3nm. Just give me such hardware packed in smartphone form factor, in 3nm lithography for excellent battery life, with just one full-spec thunderbolt :-)

09-03-2025, 02:22 AM	#16
8833 Junior Member Posts: 9 Karma: 529966 Join Date: Aug 2025 Device: Nxtpaper 11	It depends how it'll be implemented in practice, but for that we can only wait. Skimming through the blog, I can see what's the goal. Blacklisting a signature (developer ID) is much easier than hunting for a known pieces of malware in non-play signed apps. Android validates the signature anyway as of today before letting you install the apk, so it could be even ad-hoc fake one but it has to be there. I guess that the identity validation for non-play store developers will get hardened over time to make it hard enough for the bad guys to stop them mass registering identities for malicious distribution purposes. Another reasons for this is scanning the app before signing it. That's actually even more important that the ability of disabling it efficiently on all devices. Although, scanning for viruses is one thing, scanning for behavior/code, aka reverse-engineering is another. With the gate keeping in place they'll be able to reject apps which miss-behave according to their opinion, or to be more polite they'll just quickly patch the OS to prevent this and that, i.e. break the apps. With all the good intentions, the question is how they'll honor the freedom? - Will they let you turn it off via developers settings? I guess not. If yes, perhaps it'll be something like running iOS apps on macbook, you can run them but only if csr is enforced, but if you need to turn it off suddenly you can't run any iOS app from AppStore. However that'll be fine for me. I already have device with play, and de-bloated device without it to run only FOSS apps. - What if an app from a hobbyist get blacklisted? Are they banned completely (all their apps, by developer ID)? Are they blacklisted forever, because they are deemed now as high-risk or intentionally malicious developers? Are their details passed over to law enforcement to let them start forensic investigation if they distributed the malware consciously or unconsciously (being compromised without knowledge)? etc. IMO, the whole problem is that people tend to use one device for everything. I know, that was the exact intention of smartphones, but it's silly and risky. Nowadays hardware is really cheap so why take so much risk? I use a nice simple low-performance device for managing all my documents, etc, but no games or anything risky, and another computer on which I have zero personal information, to be stress free used for anything else, like games, apps obtained from wherever, visiting whatever corners of the internet with no fear of having it nuked by malicious javascript, etc. Same with mobile, I have one old phone for just the token apps, banking apps, which I don't even use for internet browsing, another one as my daily driver. If they force me to split the daily driver phone into two: one with play to run the simple everyday apps like an app for parking tickets, another for my current FOSS choice, that'll be an annoyance as I'll have to start carrying 2 phones, but it's not the end of the world. I like Linux, and the true user freedom it brings with. Too bad that the non-x86 devices are so hard to get Linux onboard. However there are interesting choices in the tablet space already, for example https://www.chuwi.com/product/items/...10-max-en.html The only real drawback of that device is short battery life. The performance is really good enough for a tablet. They packed SoC in 14nm inside, imagine what would be the efficiency if it was made with 3nm. Just give me such hardware packed in smartphone form factor, in 3nm lithography for excellent battery life, with just one full-spec thunderbolt :-)