Application Installation Vendor Validation

MPS validates the application installation method and source to ensure it is not directly installed from an apk or sideloadded (adb) and it was installed by an official app store such as Google Play Store and Huawei AppGallery. Installing through an alternative store or directly from the apk (downloaded from an apk mirror) is not allowed and will halt app execution.

This serves to protect users against installing a maliciously modified app version that can compromise the safe operation of the protected application and leaking sensitive information. The vendor validation does not prevent application exploiting per se, but greatly difficults the distribution of a compromised version of the app, since victims cannot just install the provided APK from an alternative store of directly.