New Auto Blocker in Samsung OneUI 6.1.1: Blocking APK Sideloading for Enhanced Security
Starting with OneUI 6.1.1, Samsung has implemented a default setting that blocks users from sideloading APK files. This setting is now applied to Samsung’s latest Android devices, even if the REQUEST_INSTALL_PACKAGES permission has been granted.
The Android system has already established a default mechanism at the operating system level to prevent users from sideloading APK files. The INSTALL_PACKAGES permission, required to install applications without prompting the user, can only be granted to pre-installed app stores, such as Google Play.
Most third-party app stores that utilize the REQUEST_INSTALL_PACKAGES permission must also obtain user consent before installation. Even with this permission, Android prompts the user for confirmation each time a new application is installed.
In OneUI 6.1.1, Samsung has introduced the Auto Blocker feature, which entirely prevents the sideloading of applications from unauthorized sources, even if these sources have obtained the REQUEST_INSTALL_PACKAGES permission.
Naturally, Samsung’s own Galaxy Store does not require such confirmation. Both the Galaxy Store and Google Play have been granted permission to install applications without prompting the user by default.
For other third-party app stores or users attempting to sideload APK files, it is necessary to disable the Auto Blocker feature in OneUI settings. Even after disabling this feature, users still need to confirm installations from sources other than the Galaxy Store and Google Play, but at least they can install APK files as intended.
While further restricting the Android system may not be detrimental to most users, as Samsung likely aims to enhance security and prevent the installation of malware-laden applications, it is somewhat ironic that the open-source Android system is becoming increasingly closed by OEMs. This trend is not limited to Samsung; many Android OEMs are now finding ways to prevent users from installing applications from sources other than pre-installed app stores.
