alt=
203x44-linked-in
News  Android
Android M

APKs to be inspected for missing files

Google has announced a change to the Android app installation process which suprised many observers because they thought it was doing it already. The change is to inspect the APK manifest of the file carrying the app to be installed, and make sure it isn't lying when it comes to describing which files it wants to install. This integrity check is useful because it can detect if the APK has been tinkered with, as is often the case with reverse-engineered packages. 

Without this check, it could be possible for "half installed" apps which would behave unpredictably., or even apps which had been repackaged having had some "phone home" security functionality removed.