Prevent unauthorized redistribution with automatic protection and prompt users to get your app on Google Play

Automatic protection can add Google Play installer checks to your app’s code that happen at runtime when your app is opened. If the installer checks fail, users will be prompted to get your app on Google Play. 

Benefits: This helps more users to get your official app updates from Google Play.

Automatic protection can add runtime checks to your app’s code to detect modification and use advanced obfuscation techniques to prevent the checks from being removed or reverse engineered. If the checks fail, the user will be prompted to get your app on Google Play or the app will not run.

Benefits: When combined with Google Play installer checks, anti-tamper protection prevents attackers from bypassing your distribution or monetization preferences through unauthorized modification, repackaging, redistribution, and piracy.

Note: Anti-tamper protection cannot guarantee prevention of all modification and redistribution. It makes these actions more complex and costly, and so reduces the likelihood of them being successful. Google Play will continually strengthen anti-tamper protection so that new releases will automatically get the latest and strongest version of protection.

Sharing app telemetry, such as anonymized environment and performance data with Google Play helps us improve the resilience and performance of anti-tamper protection. You can opt out of sharing app telemetry by turning off 'Share app telemetry with Google' on the Automatic protection settings page (Test and release > App integrity and scroll down to Automatic protection). Learn more about how data is used to develop Google services.

Automatic protection requires Google Play to create modified APKs and sign them on your behalf, so you must:

• Use Play App Signing.
• Publish with Android App Bundles.

Please also be aware of the following:

• Automatic protection requires your app to target a minimum API level of 21 or higher.
• Automatic protection works offline. However, installer checks periodically require a data connection if the Play Store app on the device has been offline for a prolonged period.
• Automatic protection replaces the need to use the Play Licensing library.
• When uploading your app to internal app sharing, protection is not applied. Only share internal app sharing links with trusted team members and do not share unprotected versions externally.
• Automatic protection is incompatible with code transparency for app bundles.

Additional prerequisites for anti-tamper protection

To use anti-tamper protection, your app must:

• Target a minimum API level of API level 23 or higher. Targeting a midSDKVersion of 23+ will reach over 99% of active Android devices.
• Target one of the following ABIs: x86, x86_64, armeabi-v7a, and arm64-v8a. To update your app's targeted ABIs, update the Gradle settings. Other ABIs that are not used by active Android devices can be removed from your targeting without impacting your app's availability.

Create a release as described in Step 1 of Prepare and roll out a release.

You can either turn on protection when creating a release (as described in Step 2 of Prepare and roll out a release) or you can turn on protection on the App integrity page (Test and release > App integrity), which contains integrity and signing services that help you ensure that users experience your apps and games in the way you intend.

When preparing your release, you will see a button that either says Get integrity protection or Manage integrity protection. You can then turn integrity protection on by clicking Yes, turn on under "Automatic protection." Google Play will then sign your releases and add integrity protection to restrict tampering and distribution abuse. This means that automatic protection is turned on.

Finish preparing your release and save your changes.

Automatic protection may not be compatible with other runtime anti-tamper solutions, and trying to use them together may result in user issues. If your app performs other runtime checks, be sure to test your protected app thoroughly for issues before releasing it to open tracks.