The Google Play Store is reinforcing attention to the security of Android apps. From now on, apps that have been audited by third-party companies will receive the “Independent Security Review” badge.
According to the information, the certificate indicates that the software has been tested and meets the security and privacy criteria established by Google and partners. As well as, it highlights the commitment of developers to identify and mitigate vulnerabilities.
According to Google, the Independent Security Review badge is awarded to apps that guarantee that data will be encrypted when transmitted over the internet. Software must also require a minimum set of permissions to operate.
“While certification to basic security standards does not imply that a product is free of vulnerabilities, the seal helps users quickly identify that the developer has prioritized security and privacy practices,” the big tech note highlights.
Google will require developers to do an independent audit of the software annually to maintain the security seal. If this does not occur, the certification will be removed.
VPN apps will be the first to receive the badge on the Play Store
At first, the Independent Security Review badge will only be available for VPN apps. Google says certification is essential for software in this category “due to the sensitive and significant amount of data it manages.”
Some apps, such as NordVPN and ExpressVPN, already display the new badge in the “Security Data” section of the Play Store. In addition, users can find more details about the certificate under “Security Practices”.
Google hasn’t said when the Independent Security Review badge will roll out to other categories of apps. Also, there is no information on whether the requirement for audits will influence the ranking of apps available to Android users.
Finally, the big tech said that, at the moment, it has no plans to make certification mandatory for developers.