跪拜 Guibai
← All articles
Android · Kotlin

Google's New Developer Verification Will Block Unregistered Apps from Installing on Android

By RockByte ·
Read original on juejin.cn ↗ Google Translate ↗ Alt translation

Android's sideloading freedom has been the platform's defining difference from iOS and the last major refuge for open, unmonitored software distribution on consumer devices. Google's verification mandate, enforced through a closed-source service it can tighten at will, sets a precedent that hardware vendors worldwide can follow to retroactively lock down devices already in users' hands.

Summary

Google's Android Developer Verification policy, effective September 30, 2026, requires every app distributor to register with a government ID, pay a fee, and prove key ownership. Apps from unverified developers will not install on devices, and the rule applies to all distribution channels, not just Google Play. The first wave targets Brazil, Indonesia, Singapore, and Thailand, with seven cooperating app stores including Samsung, Xiaomi, and OPPO. By 2027, Google plans to extend the requirement to all GMS-certified Android devices.

The sideloading escape hatch for "advanced users" demands nine manual steps: enabling developer options, dismissing duress warnings, entering a PIN, rebooting, and waiting a mandatory 24-hour cooling-off period before temporarily or permanently allowing the install. This flow is controlled by Google Play Services, a closed-source component Google can update or revoke without user consent. The design fits the definition of a dark pattern, making sideloading technically possible but practically unreachable for most people.

Small-scale and non-commercial distribution takes the hardest hit. Personal tools shared among friends, apps written for family members, internal CI test builds, and the entire F-Droid ecosystem of free open-source apps all face an existential threat. F-Droid called the policy an existential threat, and 71 organizations across 23 countries, including the EFF, FSF, Tor Project, and GrapheneOS, signed an open letter opposing it. Cory Doctorow labeled the strategy "Darth Android," describing it as a systematic, premeditated shutdown of Android's openness. The irony is sharp: the EU's Digital Markets Act forced Apple to open iOS to sideloading, while Google voluntarily locks Android down from the inside.

Takeaways
From September 30, 2026, any Android app from an unregistered developer will be blocked from installation on devices, regardless of the distribution channel.
Registration requires a fee, a signed agreement, a government-issued ID, and proof of signing key ownership.
The first markets affected are Brazil, Indonesia, Singapore, and Thailand, with seven app stores cooperating, including Samsung, Xiaomi, OPPO, vivo, Honor, and Transsion.
By 2027, the requirement expands to all GMS-certified Android devices globally.
Sideloading remains possible only through a 9-step process inside developer options that includes a mandatory 24-hour waiting period.
The sideloading flow is governed by Google Play Services, a closed-source component Google can modify or disable without a system update or user consent.
F-Droid, the largest free open-source Android app store, stated the policy poses an existential threat to its existence.
71 organizations from 23 countries, including the EFF, FSF, Tor Project, and GrapheneOS, signed an open letter opposing the policy.
Over 100,000 people signed a change.org petition against the restrictions.
The EU's DMA forced Apple to open iOS to sideloading, while Google is voluntarily closing Android's openness.
Conclusions

Google's sideloading workaround is a dark pattern: it exists on paper to claim openness but is deliberately too cumbersome for ordinary users to complete, making the restriction effectively absolute.

By routing the restriction through Google Play Services rather than AOSP, Google can tighten or expand the policy on devices already sold, without any system update or user consent.

The policy reverses the historical trajectory of mobile platforms: Apple was compelled by regulation to open up, while Google is choosing to close down without equivalent legal pressure.

The requirement to submit government ID for app distribution shifts the gatekeeping function from a technical security measure to an identity-based control, which the EFF classifies as censorship infrastructure.

Internal CI pipelines and enterprise app distribution will face a logistical burden: every test device must individually complete the 9-step, 24-hour cooldown before installing a build.

The community's call for developers to refuse registration is a direct attempt to deny Google the compliance needed to operationalize the policy, treating developer cooperation as the policy's single point of failure.

Concepts & terms
Sideloading
Installing an app directly onto a device from an APK file, bypassing an official app store. It is the mechanism that allows Android users to install software from websites, USB transfers, or internal corporate networks without store approval.
Google Play Services
A closed-source background service Google pre-installs on GMS-certified Android devices. It handles APIs for location, authentication, and now app installation policy, and can be updated by Google silently without a full system update.
Dark Pattern
A user interface design crafted to trick users into taking actions they might not otherwise choose. In this context, the 9-step, 24-hour sideloading flow is designed to discourage the behavior while technically allowing it.
F-Droid
The largest free and open-source Android app store, hosting thousands of apps with no ads, tracking, or proprietary dependencies. It relies entirely on sideloading for installation since it is not distributed through Google Play.
GMS (Google Mobile Services)
Google's proprietary suite of apps and APIs that manufacturers license for Android devices. GMS certification is required for a device to ship with the Play Store and other Google services pre-installed.
Source: juejin.cn ↗ Google Translate ↗ Backup ↗