← Back to context

Comment by ysnp

1 hour ago

Can Android OEMs, bundling Google Mobile Services for Android certification, choose different trust roots for verification?

>The correct thing to complain about is requiring developer mode for unverified installs, which doesn't seem necessary

I had assumed the friction was to dissuade developers from not going through ADV. Isn't it partly for making malware distribution more traceable and campaigns easier to halt on GMS/certified Android systems?