From Newsgroup: comp.mobile.android

*Google will block sideloading of unverified Android apps*
*starting next year*

<https://arstechnica.com/gadgets/2025/08/google-will-block-sideloading-of-unverified-android-apps-starting-next-year/>
"Google says it's no different than checking IDs at the airport."

Even though iOS has 1-1/2 times the number of known zero-day exploits
<https://www.cisa.gov/known-exploited-vulnerabilities-catalog>
And Google's project zero proved much of the iOS code has never been tested

<https://googleprojectzero.blogspot.com/2019/08/a-very-deep-dive-into-ios-exploit.html>

Google is tightening Android app security by requiring all developers
(whether they publish on the Play Store or sideload apps) to verify their identities.

Starting in 2026, only apps from verified developers will be installable on most certified Android devices

Even though iOS doesn't have half the functionality of Android, Google is going to limit the functionality available to Android devices via
sideloading. As such, Google's new system mimics Apple's approach,
introducing a Developer Console for registering sideloaded apps with
verified identities.

This change could limit app distribution freedom, especially for indie developers or alternative app stores.

Rollout Timeline:
1. October 2025: Early testing begins.
2. March 2026: Console opens to all developers.
3. September 2026: Launch in Brazil, Indonesia, Singapore, and Thailand.
4. 2027: Global expansion planned.

Apparently Google wants to limit functionality available on Android, much
like Apple has done to the point iOS can't do 1/2 of what Android does.

And yet, there is only one functionality iOS does that Android doesn't.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 8/25/25 8:32 PM, Marion wrote:

Google is tightening Android app security by requiring all developers >(whether they publish on the Play Store or sideload apps) to verify their >identities.

Starting in 2026, only apps from verified developers will be installable on >most certified Android devices

I wonder if this Amazon Fire HD10 tablet I'm posting with is a certified
Android device in Google's opinion? Because I side loaded and signed into
the Google Play Store on it and thus get apps from both stores (Google and
the tablet's installed Amazon Appstore). Most of Google's store stuff runs
just fine on Amazon's forked Android version. Also much side loaded stuff.
Anyway it would be ironic if Google stopped me side loading unauthorized
apps because on this tablet Google IS an unauthorized side loaded app...


--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On Tue, 26 Aug 2025 05:55:59 -0000 (UTC), AJL wrote :

Google is tightening Android app security by requiring all developers >>(whether they publish on the Play Store or sideload apps) to verify their >>identities.

Starting in 2026, only apps from verified developers will be installable on >>most certified Android devices

I wonder if this Amazon Fire HD10 tablet I'm posting with is a certified
Android device in Google's opinion? Because I side loaded and signed into
the Google Play Store on it and thus get apps from both stores (Google and
the tablet's installed Amazon Appstore). Most of Google's store stuff runs
just fine on Amazon's forked Android version. Also much side loaded stuff.
Anyway it would be ironic if Google stopped me side loading unauthorized
apps because on this tablet Google IS an unauthorized side loaded app...

Hi AJL,

This bothers me a lot as now we can't compile our own APKs without signing
up for a Google verified developer, which destroys our privacy just like
iOS destroys our privacy in an instant by requiring those matrix logins.

I'm glad you responded as you did, as it didn't occur to me that some
"Android" devices might not be considered a "certified Android device".

Looking it up, apparently the Amazon Fire HD 10 runs Fire OS, which is a heavily customized fork of Android. While it's technically Android-based,
it's apparently not certified by Google under the Android Compatibility Program.

I think that means it doesn't come with Google Mobile Services (GMS) pre installed, and from what I read just now, it may very well be that Amazon doesn't submit Fire tablets for Google's certification process.

So when Google says "most certified Android devices," they're perhaps
referring to devices that have passed compatibility testing and are
officially recognized by Google, such as the ubiquitous Samsung Galaxy
tablets or Pixel devices.

I don't have a crystal ball, but I do see very clearly how Apple locked up control of iOS such that it can't do half of what Android can do.

The problem is that if Google enforces this identity verification rule strictly, it's possible that apps from unverified developers might not
install or run properly, even on sideload-friendly devices like yours.

Whether that enforcement will extend to uncertified devices like Fire
tablets is unclear to me, but it's definitely something to watch over.

The only solution I can see for typical devices is each and every one of us
has to become an official Google developer - which seems crazy to me as
that's the Apple model which caused iOS to have half the functionality of Android. Sigh.

It's a bad direction, IMHO, for Google to take just because they want to
wrest control and claim it's being done for reasons that are said to be
safety (as that's clearly a lie).

It's all about control.

The question now is what happens to 3rd-party repos and src code compiles?
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

Marion wrote:

AJL wrote :

Google is tightening Android app security by requiring all developers (whether they publish on the Play Store or sideload apps) to verify
their identities. Starting in 2026, only apps from verified
developers will be installable on most certified Android devices

I wonder if this Amazon Fire HD10 tablet I'm posting with is a
certified Android device in Google's opinion? Because I side loaded
and signed into the Google Play Store on it and thus get apps from
both stores (Google and the tablet's installed Amazon Appstore).
Most of Google's store stuff runs just fine on Amazon's forked
Android version. Also much side loaded stuff. Anyway it would be
ironic if Google stopped me side loading unauthorized apps because
on this tablet Google IS an unauthorized side loaded app...

Hi AJL, This bothers me a lot as now we can't compile our own APKs
without signing up for a Google verified developer, which destroys
our privacy just like iOS destroys our privacy in an instant by
requiring those matrix logins. I'm glad you responded as you did, as
it didn't occur to me that some "Android" devices might not be
considered a "certified Android device".

Looking it up, apparently the Amazon Fire HD 10 runs Fire OS, which
is a heavily customized fork of Android. While it's technically Android-based, it's apparently not certified by Google under the
Android Compatibility Program. I think that means it doesn't come
with Google Mobile Services (GMS) pre installed, and from what I read
just now, it may very well be that Amazon doesn't submit Fire tablets
for Google's certification process.

I think that we can safely say that Amazon doesn't officially let Google anywhere near their Fire tablets. And unofficially I was kinda surprised
that Amazon even let me side load the Google Play Store on it and that
once installed Google let me sign in and use it just like a regular
Google Android tablet.

There of course are a few quirks. Google sometimes tried to upgrade
Amazon apps so I just turned Google's auto upgrade off. Also sometimes
an upgrade of a Google app breaks it. My guess is because the upgraded
app now is too advanced for the Amazon Fire's older Android fork. So I
just revert to the earlier version and (usually) all is well.

So when Google says "most certified Android devices," they're
perhaps referring to devices that have passed compatibility testing
and are officially recognized by Google, such as the ubiquitous
Samsung Galaxy tablets or Pixel devices.

What about the less ubiquitous tablets? I have a 10" Android tablet
branded "DEZLTID". (The all capital letter logo is apparently a Chinese
thing. I still haven't figured out how to pronounce it.) However it came
with Google installed so I'm guessing it's a certified device?

The problem is that if Google enforces this identity verification
rule strictly, it's possible that apps from unverified developers
might not install or run properly, even on sideload-friendly devices
like yours. Whether that enforcement will extend to uncertified
devices like Fire tablets is unclear to me, but it's definitely
something to watch over.

The only solution I can see for typical devices is each and every one
of us has to become an official Google developer - which seems crazy
to me

That would be crazy for me too especially being a non-technical person.
This is just a hobby for me. The last programming I did was a few years
back using Atari Basic...

It's a bad direction, IMHO, for Google to take just because they want
to wrest control and claim it's being done for reasons that are said
to be safety (as that's clearly a lie). It's all about control. The
question now is what happens to 3rd-party repos and src code
compiles?

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 8/25/25 11:32 PM, Marion wrote:

Starting in 2026, only apps from verified developers will be installable on most certified Android devices

Correct me if I'm wrong, but there's absolutely no reason why Google
should be able to decide what I choose to run on *my* device.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 31.08.25 20:44, Gabriel Coan wrote:

On 8/25/25 11:32 PM, Marion wrote:

Starting in 2026, only apps from verified developers will be installable on >> most certified Android devices

Correct me if I'm wrong, but there's absolutely no reason why Google
should be able to decide what I choose to run on *my* device.

You can run on your device what you want. Of you choose to run Android
on your device you have to follow the Google-rules. Google is evil. Very
much like $MS$.
--
"Roma locuta, causa finita" (Augustinus)
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 8/31/25 4:35 PM, J||rg Lorenz wrote:

You can run on your device what you want. Of you choose to run Android
on your device you have to follow the Google-rules. Google is evil. Very much like $MS$.

Literally the only reason for this BS is profit...

--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 8/31/25 11:44 AM, Gabriel Coan wrote:

On 8/25/25 11:32 PM, Marion wrote:

..

Starting in 2026, only apps from verified developers will be installable on >> most certified Android devices

Correct me if I'm wrong, but there's absolutely no reason why Google
should be able to decide what I choose to run on *my* device.

I'm guessing it's a security thing. I'm now posting with a Google Chrome OS
tablet (Lenovo 10e) that doesn't let me sideload anything. It's the Google
store way or the highway for Android apps. Kinda like what's apparently
coming with the verified developer thing. However I do have an Android
tablet (Amazon Fire HD10) that does let me sideload Android apps from
anywhere. But I suspect that I could easily get into trouble on it by
loading apps from just any old website. So on my Google stuff (like you,
all owned by me) Google is apparently my unrequested boss and protector...
8-O



--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On Tue, 26 Aug 2025 09:03:18 -0700, AJL wrote :

I think that we can safely say that Amazon doesn't officially let Google anywhere near their Fire tablets. And unofficially I was kinda surprised
that Amazon even let me side load the Google Play Store on it and that
once installed Google let me sign in and use it just like a regular
Google Android tablet.

Hi AJL,
I think it's great that each of us adds value in ways that the others
can't, where I've never even touched an Amazon Fire Tablet, so we have ot learn from what you've learned, and that which you can impart to us of it.

It appears Amazon's strategy is to kind of sort of limit your choices in
app stores by making it much easier to use their app store than the Google
App Store, but luckily for you Fire OS still allows for sideloading apps.

I don't know if this is correct but apparently 4 packages are needed:
1. Google Account Manager <com.google.android.gsf.login>
2. Google Services Framework <com.google.android.gsf>
3. Google Play Services <com.google.android.gms>
4. Google Play Store <com.android.vending>

<https://www.howtogeek.com/232726/how-to-install-the-google-play-store-on-your-amazon-fire-tablet/>
<https://www.androidauthority.com/install-google-play-kindle-fire-tablets-1139366/>

There of course are a few quirks. Google sometimes tried to upgrade
Amazon apps so I just turned Google's auto upgrade off. Also sometimes
an upgrade of a Google app breaks it. My guess is because the upgraded
app now is too advanced for the Amazon Fire's older Android fork. So I
just revert to the earlier version and (usually) all is well.

I once wrote a long thread on what gets updated by the Google Play Store update and it's NOT what people think it is. It's not even close.

But I generally turn off auto update of apps anyway, so it's not that
critical to me, but be advised that almost nobody understands updates
because they're NOT what you'd think they are. They're just not.

So when Google says "most certified Android devices," they're
perhaps referring to devices that have passed compatibility testing
and are officially recognized by Google, such as the ubiquitous
Samsung Galaxy tablets or Pixel devices.

What about the less ubiquitous tablets? I have a 10" Android tablet
branded "DEZLTID". (The all capital letter logo is apparently a Chinese thing. I still haven't figured out how to pronounce it.) However it came
with Google installed so I'm guessing it's a certified device?

I have no idea but I just checked what's the difference to you if you
install instead of the Google Play Store, the Aurora front end to it.

If you use Aurora instead of the Google Play Store GUI, you don't need
those four things anymore - which is a bonus in terms of privacy.

These are NOT NEEDED if you use Aurora instead of Google Play Store:
1. Google Account Manager <com.google.android.gsf.login>
2. Google Services Framework <com.google.android.gsf>
3. Google Play Services <com.google.android.gms>
4. Google Play Store <com.android.vending>

You can turn off the Aurora Store automatic app update if you want.

The problem is that if Google enforces this identity verification
rule strictly, it's possible that apps from unverified developers
might not install or run properly, even on sideload-friendly devices
like yours. Whether that enforcement will extend to uncertified
devices like Fire tablets is unclear to me, but it's definitely
something to watch over.

The only solution I can see for typical devices is each and every one
of us has to become an official Google developer - which seems crazy
to me

That would be crazy for me too especially being a non-technical person.
This is just a hobby for me. The last programming I did was a few years
back using Atari Basic...

I agree that it's crazy for me or you to have to become a registered
developer in Google's eyes just so that we can build an APK from source
code and then install that APK onto our own Android devices.

That's what Apple requires.
Apple locks down iOS to the point it can't do half of what Android does.

Android isn't supposed to be locked down like iOS is.
Every company is envious of Apple's control but this is going too far.
--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 8/31/2025 7:07 PM, Marion wrote:

Hi AJL, I think it's great that each of us adds value in ways that
the others can't, where I've never even touched an Amazon Fire
Tablet, so we have to learn from what you've learned, and that which
you can impart to us of it.

There's not much to learn. Once Google-ized the Fire tablets work pretty
much like most Android tablets. My 10" Amazon Fire HD-10 tablet is
currently the favorite of my collection. It's very light at 15.1 oz. It
has a great screen at 224 PPI. Being plastic it's not cold to the touch.
Unlike many tablets it has large comfortable rounded corners, not the
sharp square ones many have. It has large bezels making it easy to hold
with my fat fingers. It has reasonable speed and it's battery life is great.

But unfortunately the Amazon Appstore sucks (IMO) so being able to
sideload Android apps like the newsreader Groundhog (remember that one?)
is a nice feature. Also the Fire's older Android fork runs most of my
older apks (like Groundhog) that the newer Android versions won't.

It appears Amazon's strategy is to kind of sort of limit your
choices in app stores by making it much easier to use their app store
than the Google App Store, but luckily for you Fire OS still allows
for sideloading apps.

There is no choice in app stores with the stock Fire tablet. The Amazon Appstore is it. So I'm kinda surprised that they did allow sideloading
and thus the Google Play Store competition. I'm sure they know about the
hack so the ability could go away at any time in an upgrade. And you
can't stop the Amazon periodic tablet upgrades. Crossing my fingers...

I don't know if this is correct but apparently 4 packages are needed:
1. Google Account Manager 2. Google Services Framework 3. Google Play Services 4. Google Play Store

Yup. There are 4 packages to load. Depending on the Fire model there are several apk versions to choose from. You just have to do a little
experimenting to get the 4 versions that work best with your tablet model.

Once loaded and signed in Google auto updates its apps which sometimes
messes things up. For example my Gmail app quit until I went back to the
older version and killed the auto-update.

If you use Aurora instead of the Google Play Store GUI, you don't
need those four things [Google installation APKs] anymore

I use many Google apps like Gmail, Maps, Calendar, Google Drive, Files
etc. so I need the official Google stuff.

which is a bonus in terms of privacy.

As you know I don't worry much about Google privacy. I was assimilated
by Google many many years ago. If you go to doctors, have credit cards,
pay state and US taxes, have bank accounts, etc., you also have little
online privacy.

Perhaps less. If a live person picks me out of the billion+ Google
accounts to spy on I suppose I should feel flattered. But the whole
staff at your doctors office can read you most private stuff.

Bottom line: If we're just talking about bits and bytes on a server
somewhere we're all hanging out...


--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 8/31/25 6:00 PM, Gabriel Coan wrote:

On 8/31/25 4:35 PM, J||rg Lorenz wrote:

You can run on your device what you want. Of you choose to run Android
on your device you have to follow the Google-rules. Google is evil. Very
much like $MS$.

Literally the only reason for this BS is profit...

Of course. Do you work for free?


--- Synchronet 3.21a-Linux NewsLink 1.2

From Newsgroup: comp.mobile.android

On 9/1/25 2:13 AM, AJL wrote:

Of course. Do you work for free?

Of course not, but I also believe that Google is certainly not doing
this for the user's benefit. They certainly seem to be pretending they are.

--- Synchronet 3.21a-Linux NewsLink 1.2