Posts: 456 +18
In brief: This week, the UK government revealed a proposal for the world's first set of standard guidelines for app stores. It comes alongside a new government report on app security and a call for tech companies to voice their opinions.
On Wednesday, the UK's Department for Digital, Culture, Media & Sport (DCMS) proposed security rules for digital marketplaces to follow to protect UK users' devices and data from compromised apps. The DCMS specifically mentions Apple, Google, Amazon, Huawei, Microsoft, and Samsung. However, the proposed guidelines would apply to any online app stores, including those on mobile devices, game consoles, TVs, voice assistants, and other products.
One requirement in the proposal calls for all app stores to include steps to report security holes in hosted software. Another would be to make privacy information more accessible for users. Apps also need to specify why they need access to a user's location and contacts.
At the same time as the DMCS's proposal, the National Cyber Security Centre published a report warning about compromised and malicious applications. It includes details on compromised SDKs, counterfeit apps, malicious updates, and more.
The DMCS also put out a call for feedback from developers and app store operators regarding how to improve security. The government will accept comments through June 29, after which it will determine the next steps before publishing its final proposal later this year.