By Kavita Mistry 
Android has long stood out for its openness compared to Apple’s iOS. But that open-door policy has also made it more vulnerable to malware and fraudulent apps. Now, Google is preparing one of its most sweeping changes yet: all Android app developers will soon need to verify their identities, regardless of where they distribute their apps.
Why Google Is Making This Move
Historically, the Google Play Store was lightly curated, allowing malicious apps—even exploits—to sneak in. Over time, multiple security checks were added, and in 2023 Google required Play Store developers to verify their identities. The result was a sharp decline in malware and fraud.
But Google claims the real problem lies in apps sideloaded outside the Play Store, which are 50 times more likely to contain malware. By expanding identity verification beyond the Play Store, Google hopes to close this security gap.
How the Verification Will Work
Google is building a new Android Developer Console for developers distributing apps outside Play. To make their apps installable on certified Android devices, developers will need to:
- Verify their identities (like an “airport ID check”)
- Register their app’s package name
- Register signing keys
Notably, Google won’t review app content or functionality—just the developer’s identity.
Rollout Timeline
The system enters early access in October 2025, with full availability for developers by March 2026. The first rollout begins in Brazil, Indonesia, Singapore, and Thailand in September 2026, before expanding globally in 2027.
This means that by 2027, any uncertified or anonymous developer’s app will likely fail to install on the vast majority of Android devices that use Google services.
Implications for Developers and Users
This shift comes as Google faces pressure from the Epic Games antitrust ruling, which requires it to allow third-party app stores. While this may boost choice, it also raises security risks. Google’s verification program could be seen as a security safeguard—or as a power play to retain control of Android’s ecosystem.
For users, the move promises fewer malicious apps. For developers, however, it adds new layers of compliance, making Android slightly less “open” than before.
Summary
Google will soon require all Android developers to verify their identities, even if they distribute apps outside the Play Store. Beginning in 2026 and expanding globally by 2027, only verified apps will install on certified Android devices. Google says the move combats malware, but critics argue it could limit Android’s openness while strengthening Google’s control amid ongoing antitrust battles.