zlacker

[return to "Google will allow only apps from verified developers to be installed on Android"]
1. EMIREL+wv[view] [source] 2025-08-25 21:03:56
>>kotaKa+(OP)
Holy shit, going to the official page[1], there's something that is somehow even worse than the loss of freedom:

"You'll need to prove you own your apps by providing your app package name and app signing keys."

That is capital-I Insane.

[1] https://developer.android.com/developer-verification

◧◩
2. layer8+Iw[view] [source] 2025-08-25 21:09:34
>>EMIREL+wv
This is confusing, since signing something already proves that you own the key.
◧◩◪
3. nullc+QF[view] [source] 2025-08-25 22:01:36
>>layer8+Iw
they've been demanding signing keys for apps distributed on the play store for years.

The only credible explanation I can come up with is that they need the keys in order to produce indistinguishably backdoored versions of applications, handy for tools like signal.

Otherwise one would never think of requesting the private keys-- if google wants to rebuild apps themselves they could sign with their own keys and possessing anyone elses private key is just pure liability as if there is any discovered abuse they can't show that they weren't the vector.

◧◩◪◨
4. luke-s+DI[view] [source] 2025-08-25 22:18:12
>>nullc+QF
So sketchy!
[go to top]