Google will soon block users from sideloading apps on Android devices, including Google TV, unless the app developer has been verified beforehand.
Today, users can download apps on Google TV or Android phones from Google's own store, Google Play, or from alternative app stores and websites. The latter option is called 'sideload.'
It is this sideload option that Google will begin to regulate more strictly. The option will not be removed, but moving forward developers must be pre-verified by Google before apps can be sideloaded on Google-certified devices such as Chromecast and Google TV from TCL, Sony, Philips and others.
- "To better protect users from repeat bad actors spreading malware and scams, we're adding another layer of security to make installing apps safer for everyone: developer verification," says Suzanne Frey, VP, Product, Trust & Growth for Android (machine translated).
Rolling out starting next year
This type of verification was introduced in the Google Play Store in 2023, which has helped, according to the company.
Starting in 2026 in a handful of countries, and all countries later, the verification requirement will also apply to sideloaded apps. This is a significant change for Google's Android, which will likely lead some user groups to express their dissatisfaction.
- "Starting next year, Android will require all apps to be registered by verified developers in order to be installed by users on certified Android devices. This creates crucial accountability, making it much harder for malicious actors to quickly distribute another harmful app after we take the first one down," explains Suzanne Frey and continues:
- "Think of it like an ID check at the airport, which confirms a traveler's identity but is separate from the security screening of their bags; we will be confirming who the developer is, not reviewing the content of their app or where it came from. This change will start in a few select countries specifically impacted by these forms of fraudulent app scams, often from repeat perpetrators."
Devices built on Android Open Source Project (AOSP), where Google is not involved, will still support sideloading without restrictions.
Also read: Big Tech blamed for piracy surge in new report
A matter of security, says Google
With this measure, Google seeks to strike a balance where openness and security can go hand in hand, it said.
- "As new threats emerge, we’ve continued to evolve our defenses. Following recent attacks, including those targeting people's financial data on their phones, we've worked to increase developer accountability to prevent abuse. We’ve seen how malicious actors hide behind anonymity to harm users by impersonating developers and using their brand image to create convincing fake apps," says Suzanne Frey.
- "The scale of this threat is significant: our recent analysis found over 50 times more malware from internet-sideloaded sources than on apps available through Google Play."
Google's timeline
| In Google's own words:
- October 2025: Early access begins. Invitations will be sent out gradually.
- March 2026: Verification opens for all developers.
- September 2026: These requirements go into effect in Brazil, Indonesia, Singapore, and Thailand. At this point, any app installed on a certified Android device in these regions must be registered by a verified developer.
- 2027 and beyond: We will continue to roll out these requirements globally. |
FlatpanelsHD
