Skip to main content

Google is adding DRM to Play Store apps for offline verification

app store reviews google play store
Image used with permission by copyright holder

Google is adding small sections of security metadata to every app that makes it way through the Google Play Store, or other authorized app stores.

The addition comes as part of Google’s continued drive to make Android safer and more secure. 2017 saw Google take down over 700,000 malicious apps, with 99 percent of those apps being removed before any users installed them. That’s pretty good, but Google’s working hard to make sure the Play Store’s security is even more water-tight, and DRM seems to be the answer to that.

Recommended Videos

The word “DRM” — or “digital rights management” — leaves a sour taste in many mouths, and we’ve seen a bunch of companies do questionable things with their DRM over the years. However, it’s important to note what Google attempting to achieve with this addition, and how the DRM helps to keep Android devices safe. Google’s existing app verification methods require a device to be online, but with the addition of small sections of security metadata, Android phones can identify when an app has been verified by the Play Store’s security measures. If that security metadata is missing, then Android can warn the user that the app they’ve downloading doesn’t come from a legitimate source.

Please enable Javascript to view this content

Why all this emphasis on offline verification? With certain markets having reached smartphone saturation levels, Google has shifted focus to developing markets, where smartphones populations are not as dense, and where Android has room to grow with variants like Android Go. Problem is, those areas can lack a consistent mobile data connection, or mobile data itself can be more expensive. Therefore, security measures that rely on a data connection simply won’t fly in those areas.

It seems that Google has come up with a pretty good way of sidestepping the data problem, though it remains to be seen how secure Google’s security metadata is — if the metadata can just be copied by malicious third-parties, then the DRM is pretty useless. Still, we imagine Google’s seen that problem coming, and taken steps to avoid it.

Still, while Google’s security has taken several giant leaps up in the last few years, there are still a few things that you, the user, can do to make sure you’re safe. Check out our list of tips on how to stay safe, and the best antivirus apps for Android.

Mark Jansen
Mobile Evergreen Editor
Mark Jansen is an avid follower of everything that beeps, bloops, or makes pretty lights. He has a degree in Ancient &…
Sideloading Android apps is about to get a little more tedious
How to sideload an APK

Sideloading Android apps is about to get quite a bit more annoying if Google has its way. The changes come from new policies implemented by Google, which will add an extra step when downloading apps from third-party sites like APKMirror.

For those who aren’t familiar with the concept, sideloading an Android app allows you to download and install an app that may not be in the Google Play Store for various reasons, such as regional restrictions, censorship, or policy reasons. Sideloading an app does require enabling developer settings to allow for third-party apps, and you do take a certain degree of your own device safety into your hands, which is why it’s disabled by default.

Read more
The Google Play app on your Android phone is getting a huge update
Google Play on the Oppo Find N2.

The Google Play app on your Android phone is about to get its biggest update in a long time. The announcements came earlier today, with Google saying its end goal is to transform the user experience on the Google Play app, to turn it into more than just a place to download apps.

To do this, Google is implementing various changes and new features, including curated spaces, the ability to list specific interests when searching for new apps and games, and new privacy and app recommendation controls. Let's dive into some of them.

Read more
Google is getting ready to remove lots of Android apps from the Play Store
Samsung Galaxy S23 showing Google Play Store

Starting next month, Google will require apps on the Play Store to provide a "stable, engaging, responsive user experience." If they don't, the company plans to eventually remove those apps from the store.

This policy is part of Google's latest spam policy update and is designed to eliminate apps with "limited functionality and content," such as text-only apps and single wallpaper apps. The new rules take effect on Saturday, August 31.

Read more