Understanding Android Oreo’s New Sideloading Policy

In versions of Android as far back as the mind can remember, apps not found in the Play Store could be universally “sideloaded” by ticking one box in the device’s Security menu. With Oreo, that changes.

How Sideloading Worked Before

In previous versions of Android, if you wanted to install an application not found in the Play Store—an act called “sideloading”—you had to jump into the Settings > Security menu and enable a feature called “Unknown Sources.” This essentially told the phone to ignore security protocols set in place for apps outside of the official channels and go ahead and allow them to be installed.

This is an excellent feature for a number of reasons. It allows developers to release their apps for testing outside of the Play Store. It gives users the control to manually update applications before the update is officially available on their handsets. For the most part, it’s a good thing.

RELATED: How to Sideload Apps on Android

But like with most things that are inherently good, there’s a dark side. Enabling this feature opens the door for viruses and other forms of malicious software to make their way onto phones. For example, some of the biggest threats to Android have been with applications that could self-install directly from SMS messages with little to no interaction from the user. That’s scary.

How Sideloading Has Changed in Oreo

So, with Oreo, Google decided to change how the Unknown Sources feature works. Instead of being a simple toggle that allows any application to download and install third-party applications, this feature is now enabled on a per-app basis. It’s incredibly smart.

For example, I personally sideload apps often that I’ve downloaded from APKMirror. Since these are all downloaded through my default browser—Chrome Beta—I can simply allow just that application to install software. That means any APK (Android Package Kit) that I download using Chrome Beta is allowed to bypass Android’s (and by extension, Google Play Protect’s) security settings, but if I tried the same thing using any other browser—even other versions of Chrome—this installation would be blocked. I’m sure you can already see how this is beneficial.

Another great example is Amazon Underground. This is Amazon’s shopping-slash-Appstore all in one package. Google doesn’t allow appstores to be installed from Google Play, so the Amazon Appstore can’t be downloaded directly from the Play Store. Amazon found a way to circumvent this restriction by offering the Underground app as a free download from the web.  With the Underground app, users are able to install anything that’s available in Amazon’s Appstore.

So, all that said, this is where the new sideloading policy is really beneficial. Historically, users who use the Amazon Appstore have left the “Unknown Sources” option enabled all the time so applications could easily be installed or updated. In Oreo, however, installation of unknown sources can simply be enabled for the Amazon Underground app. This will allow apps to be installed as needed, but also keep the rest of the system secure. It’s a brilliant compromise.

How to Access Android’s New Sideloading Settings

Now that you know what’s changed and why, let’s talk about where you can find these new settings.

First, give the notification shade a tug and tap the gear icon to jump into the Settings menu.

From there, tap Apps & Notifications, then expand the Advanced dropdown menu.

Choose Special App Access, then “Install Unknown Apps” from the very bottom of this menu.

Select the app you’d like to allow sideloading from, then tap the toggle to enable the feature.

Done and done.

Cameron Summerson is a die-hard Android fan, Chicago Bulls fanatic, metalhead, and cyclist. When he's not pounding keys here at HTG, you can find him spending time with his wife and kids, spinning legs on the bike, chugging away on the 6-string, or being disappointed in the Bulls.