Technology

Just think of all the other things that could benefit from a "protective waiting period" to enhance your safety.

Turning off location tracking, using a web browser other than Chrome, using a mail server other than Gmail, visiting duckduckgo.com — if Google really cared about your privacy and security they'd add a 24-hour delay to all these dangerous activities.

If this is really as straightforward as it sounds then I'd consider this the best case scenario. Google could have gone full Apple style lockdown or even just have implemented this flow on a per app basis, but needing to wait 24hr one time to enable unverified app installation isn't a bad idea from a security perspective. It prevents a bad actor with temporary access from being able to do much while not getting in the way of us power users after the initial 24hr period.

My bigger problem is how Google is leveraging their monopoly to implement this single-handedly and only for themselves. If they had instead gone through AOSP this perhaps could have been implemented in a better way to allow other parties than just Google to be the verifier, and that 24hr waiting period could be applied to any verifier that is not the phone's default. I'd argue this would be an equally reasonable security measure considering how many scams are out there preying on those who aren't technologically savvy, yet would maintain transparency.

They will just redefine what 24h means!

Don't think for a second that these companies are working in good faith, and would change their evil plans due to some pushback from the rabble. They will just find ways to circumvent things. They have everyone by the nads, there are no competitors.

Why is it called developer mode if it's supposedly an advanced flow? That has a bad implication.

• enable developer options
• confirm that you are not tricked
• restart phone and re-authenticate
• wait one day
• confirm with biometrics that you know what you are doing
• decide if you only want unrestricted installs for 1 week or forever
• confirm that you accept the risks
• enjoy the few apps that still have developers motivated to develop for a user-base willing to put up with this

Can we prevent this on the EU level? It really is just killing independent competition.

In addition to the advanced flow we’re building free, limited distribution accounts for students and hobbyists. This allows you to share apps with a small group (up to 20 devices) without needing to provide a government-issued ID or pay a registration fee.

Fuck you sideways, Google.

This would not have affected me since I use Lineage OS without Google Play Services, but I am now more seriously than ever looking into using a Linux phone like Postmarket OS.

How will this be accepted by the EU?  Will it comply to the regulations? 

They think this will take some of the heat off of them. Hopefully no one actually thinks this is a reasonable compromise. If I want to help an elderly family member install something on their phone during Thanksgiving dinner or a family reunion, I'm not gonna want to wait a day. Uncle Paul's flying back to Florida tomorrow morning!

Okay but, installing an apk is not the kind of thing a scammer does. They'll just install some standard off the shelf remote access software from the play store

This very much feels like they just needed to come up with a new justification for this process and opted for scammers for some reason. Even though they're completely disconnected

I don't care, this is a massive win

And again, confirming that my current phone will be the last android device I own.

I imagine that the demand for linux phones will only grow.