We've been hearing a lot about Android 15 lately, and Google has confirmed that this version of its mobile operating system will focus on privacy and security. Part of this may include special security features when sideloading and installing apps from outside the Google Play store.

According to Mishaal Rahman of Android Authority, Android currently contains code that suggests something called "Enhanced Confirmation Mode". The feature itself is not yet included in the Android 15 beta, but appears to be designed to improve security around app installation settings and extend Android 13's Restricted Settings feature.

Restricted Settings is designed to limit the functionality of apps that users install from sources other than Google Play. In particular, this prevents users from enabling accessibility and notification listener services for side-loaded apps, which helps improve data security when the source is unknown.

The extended confirmation mode works in conjunction with the restricted setting to deny access to sensitive data in sideloaded apps if it comes from a malicious source. Specifically, it is designed to prevent exploitation of the session-based installation API, the system Android uses to determine if an app came from Google Play.

It does this by checking the system configuration permission list and checking the XML file loaded into the factory image. Without it, the app cannot bypass these security restrictions and access services like accessibility and notification listeners. If you try, you will get a specific ECM dialog explaining that these permissions are not available.

However, it is unclear if there is an option to exclude certain apps from the ECM, as is the case with "Restricted Settings". It is also unclear whether well-known third-party app stores such as Amazon are excluded from these restrictions.

Android's sideloading feature is great, but it comes with many risks. So it's great to see Google doing what it can to keep your sensitive data safe without restricting how and when you can install apps from unofficial sources.

The Android 15 beta is now available for people with eligible devices to install, and more details about the software will be announced at Google I/O 2024 next month, though the exact timing for Android 15 itself is unclear, It is not expected to begin rolling out until well after the end of the year.