Google is implementing new security measures for Android devices, requiring developers who distribute apps outside of teh official Play Store to undergo identity verification.the policy, rolling out in phases beginning September 2026, aims to combat malicious software and increase accountability within the Android ecosystem, long known for its open but vulnerable nature. While Google characterizes the move as a necessary security upgrade, it has already sparked debate among developers and advocates for Android’s open-source principles.
Google is requiring developers who distribute Android apps outside of the Play Store to register and undergo identity verification before those apps can be installed on certified Android devices.
The move, announced by Google, aims to bolster security and accountability within the Android ecosystem, a platform known for its openness but also vulnerability to malicious software. A campaign called Keep Android Open warns that the policy could undermine Android’s open nature, while Google emphasizes the need for increased security measures.
Google first presented the plan in August 2025, detailing a new security layer for Android devices. The policy requires apps installed via sideloading – outside of the official Play Store – to be linked to a verified developer. An early access program began in October 2025, with full verification opening to all developers in March 2026.
Implementation will roll out in phases, starting in September 2026 in Brazil, Indonesia, Singapore, and Thailand, before a broader global rollout in 2027, according to Google’s timeline.
Addressing Security Concerns
Google stated the primary goal of the initiative is to make it more difficult for malicious actors to re-introduce harmful apps after previous versions have been removed. The company has published documentation outlining the registration and verification process for apps distributed outside the Play Store through the Play Console developer tool.
In response to criticism, Google has indicated it is considering exceptions, particularly for students and hobbyist developers. The company has also opened the possibility for experienced users to install apps from unverified developers, but only through additional confirmation steps and clear risk warnings.
“Keep Android Open” Raises Concerns
The Keep Android Open campaign argues that Google’s model will complicate direct app sharing and centralize control over app installation within Google’s purview. The campaign points to requirements such as central registration, fees, acceptance of terms, and submission of identity documentation as potential barriers.
Developers and users are encouraged to contact national regulatory authorities to voice concerns about the policy’s potential consequences. Tech news site Cybernews has reported on the campaign as a widespread reaction from developers who fear the changes could significantly impact third-party distribution and alternative app stores.
Denmark’s Ministry of Digitalisation cuts out Microsoft – switches to Linux and open source
