Google is taking steps to enhance the security of the Android ecosystem, announcing changes that will restrict the installation of apps from unverified sources. This decision will change how Android users install applications, limiting a long-standing feature where users could install apps outside the official Google Play Store, known as sideloading.
The core change dictates that only apps created by verified developers can be installed on certified Android devices. Previously, the verification process mainly applied to developers publishing apps on the Google Play Store. Now, developers of third-party apps will also need to be verified by Google. Google will provide a new Android Developer Console to facilitate this, requiring developers to register.
The testing phase begins in October 2025. The Android Developer Console will be accessible to all developers from March 2026. Initial implementation will be in Brazil, Indonesia, Singapore, and Thailand in September 2026. A global rollout is scheduled for 2027.
Google reports that sideloaded apps are far more likely to contain malware – about 50 times the risk. Verification aims to distinguish legitimate developers and hinder fraudulent developers from circumventing bans by re-releasing apps under new names. Google claims that the introduction of verification on the Play Store in 2023 reduced incidents of malware, fraud, and data theft.
Users will only be able to install third-party apps from developers verified by Google. Apps from unverified developers will not be installable on certified Android phones. This change won’t affect custom ROMs or devices that do not have Google services pre-installed, such as those in China.
This measure comes in response to the Epic Games case against Google. The court ordered Google to permit third-party app stores on the Play Store. This ruling has prompted Google to reinforce its control over app distribution through these new regulations.
