Google Play's integrity and signing services help you ensure that users experience your apps and games in the way you intend. You can use the App integrity page (Release > App integrity) in Play Console to:
- Link your Google Cloud project to use the Play Integrity API to protect your apps and games from risky interactions
- Set up automatic integrity protection to prevent unauthorized modification and redistribution.
- Set up Play app signing to allow Google Play to manage your app signing key and use it to sign each release
- Turn on integrity checks for your Google Play store listing visibility so that unknown and untrustworthy devices that fail integrity checks can’t download your app from Google Play.
You can also quickly check the status of each of these services.
You can use the App integrity page (Release > App integrity) to manage and monitor all of Google Play’s integrity and signing services. Each service has information and resources to get started. After you turn on a service, you can configure it and access other features in its settings menu. If available, you’ll also start seeing reporting for the service.
Click on a section below to expand or collapse it.Play Integrity API
Call the Integrity API at important moments in your app to check that it's your app binary, installed by Google Play, running on a genuine Android device. Your app's backend server can decide what to do next to prevent abuse, unauthorized access and attacks. After integrating the Integrity API, you can monitor your app's API requests and analyze verdicts via reports generated by your install base.
Get started with the following resources:
Use Google Play’s automatic integrity protection to protect your apps and games against integrity abuse in the form of unauthorized modification and redistribution. Automatic integrity protection works in your app without a data connection. It can be turned on with one-click in the Play Console and requires no developer work before testing and no backend server integration.
Learn more about automatic integrity protection.
Use Play App Signing to allow Google Play to manage and protect your app signing key and use it to sign each release. This makes sure that any updates are from you.
Learn more about using Play App Signing.
Turn on integrity checks for your store listing so that Google Play can check that devices pass integrity checks before making your store listing visible to users.
- This service does not require you to integrate the Play Integrity API in your app. The Play Store app obtains a device verdict on the device itself and uses it to determine store listing visibility.
- By turning on integrity checks, you can reduce your app’s availability to risky devices such as rooted or compromised devices, emulators and unknown environments.
- You can find the definitions for each integrity check in the Play Integrity API documentation.
- This does not prevent users from obtaining your app another way such as through another distribution channel or via sideloading, so consider using runtime protection as well such as the Play Integrity API or automatic integrity protection.
To use integrity checks:
- Open Play Console and go to the the App integrity page (Release > App integrity)
- Go to the "Store listing visibility" section.
- Choose whether you want to turn on integrity checks for your Google Play store listing. Unknown and untrustworthy devices that fail integrity checks will not be able to install your app from Google Play:
- No integrity checks: Your store listing will be visible to all devices that you support.
- Basic integrity checks: Your store listing will be visible to all devices that you support that meet basic integrity checks.
- Device integrity checks: Your store listing will be visible to all devices that you support that meet device integrity checks.
- Save your changes.