Torsten GroteAug 25, 2025
Google won't allow you to install Android apps whose developers' identity Google hasn't verified. Starting in 2026 in some countries and in 2027 everywhere: https://www.androidauthority.com/android-developer-verification-requirements-3590911/
Google wants to make sideloading Android apps safer by verifying developers’ identities

Google wants to make sideloading safer on Android by verifiying the identities of developers who distribute apps outside the Play Store.

Android Authority
Show threadTorsten GroteAug 26, 2025

We need to fight Google's new ID requirement for app developers. It isn't like showing ID at the airport. More like showing it at the printing press and only IDed authors are allowed to print books.

What Google doesn't talk about is that they build this ID system to ban developers and their apps.

Show threadTorsten GroteAug 26, 2025
Unfortunately, developers on Google Play are already used to this system and people have accepted Apple, so I this will be a hard fight. Digital ecosystems being closed "to keep us safe" isn't seen as a bad thing.
Show threadTorsten GroteAug 26, 2025

People saying "But I use a degoogled custom ROM, so I won't be affected" are missing the point. Apps not on Google Play are already a niche. Banning them on most people's devices is a big issue, even if some people can still escape.

Also the general trend of Google becoming more closed may make even custom ROMs impossible eventually.

Show threadTorsten GroteAug 26, 2025
In the past, when books were censored and forbidden, people could still print them in their basements and spread them. Everybody who got their hands on one, could read it. This won't be possible anymore in our new digital age.
Show threadTorsten GroteAug 26, 2025

Under-reported detail: If you don't pay a fee to Google, they limit how many people can install your apps and how many apps you are allowed to have.

Source: https://developer.android.com/developer-verification/guides/android-developer-console

Android developer verification  |  Android Developers

Android Developers
Show threadTorsten GroteAug 26, 2025

Google asks what we think of their plans to block Android app installs outside of Google Play (unless the developers let Google verify their identity and pay a fee).

Want to tell them your opinion, just submit this form:

https://docs.google.com/forms/d/e/1FAIpQLSfN3UQeNspQsZCO2ITkdzMxv81rJDEGGjO-UIDDY28Rz_GEVA/viewform?usp=dialog

Android developer verification requirements

Use this form to submit questions or feedback about the new Android developer verification requirements announced in August 2025. You can learn more about the requirements in the Android developer verification guide. Sign up for early access here.

Google Docs
Show threadTorsten Grote
The @commonsguy has some uncomfortable Questions About Android Developer Verification for Google: https://commonsware.com/blog/2025/08/26/uncomfortable-questions-android-developer-verification.html
Uncomfortable Questions About Android Developer Verification

Google announced a program that is proving to be unpopular among Android app development experts. I have questions.

CommonsWare: Android App Development Books
Aug 26, 2025 at 11:59pmWeb
Show threadTorsten GroteSep 18, 2025
Android published new APIs that seem to confirm that your phone will phone home when you install apps. It will refuse installation when you are offline or developer got blocked by Google:
https://developer.android.com/reference/android/content/pm/PackageInstaller#DEVELOPER_VERIFICATION_FAILED_REASON_NETWORK_UNAVAILABLE
PackageInstaller  |  API reference  |  Android Developers

Android Developers
Show threadTorsten GroteSep 18, 2025

The documentation also talks about a "developer verification policy" that may allow "the user to bypass a verification failure caused by network issues".

Also, there will be a "lite version of the developer verification", but what this means is still unclear.

Show threadTorsten GroteOct 1, 2025
Google now says "we are also introducing a free developer account type that will allow teachers, students, and hobbyists to distribute apps to a limited number of devices without needing to provide a government ID."
It is unclear how verification will look like.
https://android-developers.googleblog.com/2025/09/lets-talk-security-answering-your-top.html
Let's talk security: Answering your top questions about Android developer verification

News and insights on the Android platform, developer tools, and events.

Android Developers Blog
Show threadTorsten GroteOct 2, 2025

Android "hobbyist developers can get a free account [for developer verification] but will face strict distribution limits, requiring them to manually authorize each device installing their app."

Having to get a device identifier from each of your potential(!) users and then manually allow-list them is an impractical limitation making this account type useless for most use-cases while allowing bad actors to exploit it.

Source: https://www.androidauthority.com/how-android-app-verification-works-3603559/

We finally know how Android's new app verification rules will actually work

Google has shed more light on how Android's app verification rules will work, which will block sideloading apps from unverified developers.

Android Authority
Show threadTorsten GroteNov 13

Google is now "building a new advanced flow that allows experienced users to accept the risks of installing software that isn't verified." https://android-developers.googleblog.com/2025/11/android-developer-verification-early.html

But hasn't shared any details on how this would look like. Also, it wouldn't be the software that is verified, but the developer's identity.

Google is otherwise continuing to push ahead with developer verification.

Android developer verification: Early access starts now as we continue to build with your feedback

News and insights on the Android platform, developer tools, and events.

Android Developers Blog
Show threadDocWolleOct 3, 2025
@grote
and it requires collecting user IDs by the developer which is not acceptable.
Show threadFossveilOct 1, 2025
@grote carrot and stick from Google
Show threadM BerberichOct 1, 2025

@grote That’s insufficient.

#google #android

Show threadThe Mad HatterSep 19, 2025
@grote It's the year of the linux phone?
Show threadRickyxSep 19, 2025
@grote One Api to rule them all.
Show thread@leX 🤘🏻Sep 19, 2025
@grote
They've got to be kidding... 👿
Show threadCairo BragaSep 19, 2025
@grote so you buy a phone, but it will belong to Google, not yourself. technofascism at its best.
Show thread[Yaseenist] CauseOfBSODSep 19, 2025
@grote so the phone needs internet to install apps now. great. guess google broke google plays own offline share feature
Show threadKevin Karhan Sep 26, 2025

@grote that is #literally #malware and I hope you intent to collect said #evidence and seek legal advice re: pressing charges against them...

https://infosec.space/@kkarhan/115268077434888391

Kevin Karhan :verified: (@[email protected])

@[email protected] thanks for the info. Personally, I use @[email protected] / #Fdroid *exclusively* and think that their approach for their own repo (pull the #git sources for n #App and compile the release version before signing it with Fdroid's key) is sufficiently secure. - OFC one can add 3rd party repos to it *and* those could be malicious as similar to #Linux package managers like `apt`, they've to provide their own signatures and knowingly adding malicious repos *will enable #malware*… Personally, I hope @[email protected] and other #regulators will tell #Google that this is unacceptable and I hope developers will instead file charges for #blackmail and #extortion against Google rather than #SelfDoxxing!

Infosec.Space
Show threadNov 13
@grote because the eu will surely like this... well they at least allow sideloading using adb