Google now offers an app signing service via Google Play. This promises to help app developers and administrators if they ever lose their key, or discover it has been compromised.
Security issues, somewhat fixed
Until now, losing a key meant devs could not update their published apps. Even worse, a compromised app key would mean that someone else could maliciously use the permissions.
Now, with the latest tweaks to the Google Play Console, these issues should become less of a hassle.
Managing signatures
In the developers’ Google Play Console, ‘App signing’ is now available via the ‘Release Management’ tools.
For new apps, devs can get Google Play to generate the signing key. In this case, Google manages just about everything.
For existing apps, certificates and keys need to be uploaded before enrolling. There is a wizard-like process to make it easy, including instructions for devs who use a Java KeyStore or encrypt their keys via plaintext PEM files.
They’re also offering a web support form that will allow developers to revoke a key and generate a new one.
To get more technical
There’s a bunch more detail on app signing keys in the Android Developer official documentation.
Given recent product tweaks and recent press, are you becoming more concerned with security issues on Google and Android, or less concerned?
Copy Transmission is a Melbourne-based agency :: Better Brands. Loud & Clear.
RECOMMENDED FOR YOU
Instagram & TikTok Surpass Google for Gen Z Shoppers
A fundamental shift is happening in how consumers discover…
A fundamental shift is happening in how consumers discover…
[NEW STUDY] Instagram Brand Engagement Down 28%
Social media engagement is becoming more challenging as competition…
Social media engagement is becoming more challenging as competition…
Meta Ads Come To Instagram Threads
Meta has officially started testing ads on Threads, marking…
Meta has officially started testing ads on Threads, marking…