{"id":1491,"date":"2024-09-13T07:20:49","date_gmt":"2024-09-13T07:20:49","guid":{"rendered":"https:\/\/www.batteriesglobal.co.uk\/batterynews\/?p=1491"},"modified":"2024-09-13T07:20:49","modified_gmt":"2024-09-13T07:20:49","slug":"android-15-limits-sideloaded-app-functionality-to-protect-users","status":"publish","type":"post","link":"https:\/\/www.batteriesglobal.co.uk\/batterynews\/archives\/1491","title":{"rendered":"Android 15 Limits Sideloaded App Functionality to Protect Users"},"content":{"rendered":"\n<p>For advanced users, there is no doubt that the ability to install apps from outside the Google Play Store (i.e. sideloading) is one of the biggest advantages of Android over iOS. Sideloading gives users the freedom to install any app they want, even if it&#8217;s not approved by Google or, more importantly, the authorities.<\/p>\n\n\n\n<p> Because it&#8217;s easier to distribute apps directly to users than it is to publish them on an app shop like Google Play, many hackers rely on sideloading to infect users&#8217; devices with malware. To address this issue, Google introduced new restrictions in Android 15 that make it harder for sideloaded apps to gain sensitive permissions.<\/p>\n\n\n\n<p><a href=\"https:\/\/www.batteriesglobal.co.uk\/smartphone-battery\/LG\/LGIP-520N\/1744953\">>>>>>>>>LG GD900E BL40E GW505 BL40 &#8211; Battery LGIP-520N 1000mAh<\/a><\/p>\n\n\n\n<figure class=\"wp-block-image\"><a href=\"https:\/\/batteriesglobalcouk.up.seesaa.net\/image\/E5BEAEE4BFA1E688AAE59BBE_20240913143309.png\" target=\"_blank\" rel=\"noreferrer noopener\"><img src=\"https:\/\/batteriesglobalcouk.up.seesaa.net\/image\/E5BEAEE4BFA1E688AAE59BBE_20240913143309-thumbnail2.png\" alt=\"\u5fae\u4fe1\u622a\u56fe_20240913143309.png\"\/><\/a><\/figure>\n\n\n\n<p>Before I go any further, I need to address Google\u2019s intentions with this change. Is Google restricting what permissions sideloaded apps can obtain because they actually want to protect users, or are they doing it to keep people on the Google Play Store? Given the many court cases and legal battles that Google has been caught up with in recent years, it\u2019s easy to be skeptical that Google has good intentions with this change. However, it\u2019s important to consider two facts. First, sideloading is a common vector for malware due to the lower barrier of entry for distribution. Second, these restrictions don\u2019t apply to any third-party app stores for Android that utilize the operating system\u2019s purpose-built API for installing apps. In fact, Android 15\u2019s restrictions on sideloaded apps are merely an expansion of a security change introduced in a previous version, a change that has not materially impacted third-party app stores and can still be manually disabled by the user.The change I\u2019m referring to is called restricted settings, a feature introduced in Android 13 that makes it harder for sideloaded apps to obtain certain sensitive permissions. <\/p>\n\n\n\n<p><a href=\"https:\/\/www.batteriesglobal.co.uk\/smartphone-battery\/LG\/BL-49H1H\/1744862\">>>>>>>>>LG Exalt VN220 &#8211; Battery BL-49H1H 1470mAh<\/a><\/p>\n\n\n\n<p> For the purpose of the restricted settings feature, Android considers apps to be \u201csideloaded\u201d if they were installed from an app that didn\u2019t use the purpose-built installation API designed for app stores. Typically, this includes installations from apps like web browsers, messaging apps, or file managers. If this occurs, then the sideloaded app is denied access to permissions that grant the use of Android\u2019s accessibility and notification listener APIs, which are two of the most powerful APIs the platform offers.However, apps installed using the session-based installation API are not restricted from requesting permissions to use the accessibility or notification listener APIs. <\/p>\n\n\n\n<p>This is because the session-based installation API is typically used by third-party app stores. Google designed these restrictions to not impede third-party app stores, and they also designed them so users who know what they\u2019re doing can still get around them. The permissions to use the accessibility and notification listener APIs aren\u2019t the only sensitive permissions that Android has to offer, though. <\/p>\n\n\n\n<p>The SMS runtime permission lets apps read the user\u2019s entire SMS database. The device admin permission lets apps lock or wipe the device at will. The overlay permission lets apps draw on top of other apps. The usage access permission lets apps track what apps you\u2019re using and how often you\u2019re using them. These permissions are all incredibly powerful, which is why the user has to manually grant them to apps. However, starting with Android 15, these permissions cannot be easily granted to sideloaded apps. Google is extending the Restricted Settings feature to cover all of the permissions I just mentioned as well as the default dialer and SMS roles. Google mentioned this extension in a blog post in May, but they didn&#8217;t share the restrictions in full until last week when they released the Android 15 Compatibility Definition Document (CDD).<br>The section on Restricted Settings in the Android 15 CDD is lengthy, but in a nutshell, Google requires the following permissions and roles to apply the Restricted Settings feature: The Android 15 CDD has a long section on Restricted Settings, but in short, Google requires the following permissions and roles to apply Restricted Settings:<\/p>\n\n\n\n<ul><li>Special permissions<ul><li>Accessibility<\/li><li>Notification listener<\/li><li>Device admin<\/li><li>Display over other apps<\/li><li>Usage access<\/li><\/ul><\/li><li>Roles (Default apps)<ul><li>Dialer<\/li><li>SMS<\/li><\/ul><\/li><li>Runtime permissions<ul><li>SMS<\/li><\/ul><\/li><\/ul>\n\n\n\n<p><a href=\"https:\/\/www.batteriesglobal.co.uk\/smartphone-battery\/LG\/BL-T6\/1744824\">&gt;&gt;&gt;&gt;&gt;&gt;&gt;&gt;LG F220 F220S F220K F220L &#8211; Battery BL-T6 3100mAh<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>For advanced users, there is no doubt that the ability to install apps from outside the Google Play Store (i.e. sideloading) is one of the biggest advantages of Android over iOS. Sideloading gives users the freedom to install any app they want, even if it&#8217;s not approved by Google or, more importantly, the authorities. Because&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0},"categories":[1],"tags":[304],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.batteriesglobal.co.uk\/batterynews\/wp-json\/wp\/v2\/posts\/1491"}],"collection":[{"href":"https:\/\/www.batteriesglobal.co.uk\/batterynews\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.batteriesglobal.co.uk\/batterynews\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.batteriesglobal.co.uk\/batterynews\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.batteriesglobal.co.uk\/batterynews\/wp-json\/wp\/v2\/comments?post=1491"}],"version-history":[{"count":1,"href":"https:\/\/www.batteriesglobal.co.uk\/batterynews\/wp-json\/wp\/v2\/posts\/1491\/revisions"}],"predecessor-version":[{"id":1492,"href":"https:\/\/www.batteriesglobal.co.uk\/batterynews\/wp-json\/wp\/v2\/posts\/1491\/revisions\/1492"}],"wp:attachment":[{"href":"https:\/\/www.batteriesglobal.co.uk\/batterynews\/wp-json\/wp\/v2\/media?parent=1491"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.batteriesglobal.co.uk\/batterynews\/wp-json\/wp\/v2\/categories?post=1491"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.batteriesglobal.co.uk\/batterynews\/wp-json\/wp\/v2\/tags?post=1491"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}