Back
Technology

Google Introduces New Android Sideloading and Developer Verification Policies

Generated on: Last updated: 2 sources
View source

Google Introduces "High Friction" Sideloading Policies for Android

Google has initiated preparatory work on new policies affecting the installation of Android applications outside its official Play Store, commonly known as sideloading. These changes, which Google describes as "high friction," aim to enhance user security, mitigate scams, and ensure users understand the risks associated with installing unverified applications, while also maintaining user choice.

Overview of Policy Changes

In August 2025, Google announced upcoming changes that would require a developer verification program for app installations, including manually sideloaded apps. By November 2025, an installation option for "experienced users" will be available, designed to bypass this developer verification.

Google refers to these changes as an "Accountability Layer" rather than a restriction, according to Matthew Forsythe, Chief Product Explainer at Google Play.

The 'Install Without Verifying' Process

Google has initiated early work on an "Install without verifying" flow for sideloaded applications, which is characterized by the company as "high friction." Recent observations within the Google Play Store app have revealed internal strings related to this flow, which include a prominent warning: "If you install without verifying, keep in mind apps from unverified developers may put your device and data at risk." Other strings suggest that an internet connection may be required for verification processes.

For users wishing to install unverified packages, an advanced flow requires navigating to the Developer Options on their device. Within these options, the 'Allow Unverified Packages' setting must be enabled, followed by a confirmation step. Activating this setting initiates a 24-hour security delay, which begins after the device is restarted. Following this delay, the setting can be enabled either temporarily or permanently.

Google's Stated Rationale and Security Measures

Google states that these measures are designed to enhance user security by making it more challenging for individuals to be coerced into installing malicious applications. The company has characterized the new sideloading flow as providing "clear warnings" while maintaining user choice. Google aims to prevent users from being coerced or tricked into bypassing safety checks, ensuring they fully understand the risks involved. The company notes it is designing this flow specifically to resist coercion and will include clear warnings.

Google has stated its intention to address scams that leverage sideloading in various countries. The implementation of additional friction into the installation process is intended as a measure to mitigate problems arising when users are manipulated into bypassing existing sideloading security protocols. The company aims to implement multiple safeguards against sideloading-related scams.

Developer Account Requirements

Alongside the installation process updates, Google has introduced a limited free developer account option. This account permits installations on up to 20 devices. For installations exceeding this limit, developers are required to pay a $25 fee and provide government identification.

Impact on Third-Party Distribution

These policy adjustments are anticipated to affect third-party app stores and independent developers who distribute their Android applications via direct APK downloads. Developers publishing on alternative platforms will be subject to the same verification rules. Android users will need to familiarize themselves with this new option as it rolls out to more countries in the coming months.