Google is testing a brand new safety function as a part of Android Superior Safety Mode (AAPM) that forestalls sure sorts of apps from utilizing the accessibility companies API.
The change, included in Android 17 Beta 2, was first reported by Android Authority final week.
AAPM was launched by Google in Android 16, launched final 12 months. When enabled, it causes the machine to enter a heightened safety state to protect in opposition to subtle cyber assaults. Like Apple’s Lockdown Mode, the opt-in function prioritizes safety at the price of diminished performance and value in order to attenuate the assault floor.
A few of the core configurations embody blocking app set up from unknown sources, proscribing USB knowledge signaling, and mandating Google Play Defend scanning.
“Builders can combine with this function utilizing the AdvancedProtectionManager API to detect the mode’s standing, enabling functions to robotically undertake a hardened safety posture or limit high-risk performance when a consumer has opted in,” Google famous in its documentation outlining Android 17’s options.
The newest restriction added to the one-tap safety setting goals to forestall apps that aren’t categorised as accessibility instruments from with the ability to leverage the working system’s accessibility companies API. Verified accessibility instruments, recognized by the isAccessibilityTool=”true” flag, are exempted from this rule.
Based on Google, solely display readers, switch-based enter methods, voice-based enter instruments, and Braille-based entry applications are designated as accessibility instruments. Antivirus software program, automation instruments, assistants, monitoring apps, cleaners, password managers, and launchers don’t fall underneath this class.
Whereas AccessibilityService has its reliable use circumstances, corresponding to helping customers with disabilities in utilizing Android units and apps, the API has been extensively abused by unhealthy actors in recent times to steal delicate knowledge from compromised Android units.
With the newest change, any non-accessibility app that already has the permission could have its privileges robotically revoked when AAPM is energetic. Customers may even not be capable to grant apps permissions to the API except the setting is turned off.
Android 17 additionally comes with a brand new contacts picker that permits app builders to specify solely the fields they need to entry from a consumer’s contact record (e.g., telephone numbers or e mail addresses) or enable customers to pick sure contacts with a third-party app.
“This grants your app learn entry to solely the chosen knowledge, making certain granular management whereas offering a constant consumer expertise with built-in search, profile switching, and multi-selection capabilities with out having to construct or preserve the UI,” Google mentioned.
