Android M: App Permissions, What's New, Risks, and Total Control

  • Android M introduces granular permission control and evolves with automatic revocation and category managers.
  • Monitor accessibility, device administrator, overlay, and full file access due to their high risk.
  • Review permissions by app or type, limit camera/microphone usage, and use Private and Archived Spaces for added security.
Iván MartínUpdated on

6 minutes

Android app permissions

Poco a poco Android M It is taking shape, once the first signs of life were already known a few days ago as we indicated in Android Help. The fact is that it has been known that one of the novelties that would be part of the new Google development would be framed in the control of application permissions.

The fact is that it seems that Android M would respond to one of the demands of users who use the work of the Mountain View company: power manage permissions to which the installed developments have access, and do this manually. That is, you would have total control over the sections that an application can access, which increases privacy that you have on a phone or tablet.

Android M

Of course, we will have to see how this is managed by the developers with the arrival of Android M, since some permissions are basic for the proper functioning of the developments and, therefore, if these are removed they would not work correctly. An example would be if connectivity in WhatsApp is limited, posts would not arrive or be sent (so, one would expect there to be options that cannot be limited). But, yes, limit abuse that jobs like Facebook do, would be entirely possible.

Arrival of Android M

The truth is that the arrival of this new Google project has come as a surprise and almost unexpected, since to date not many devices have managed to migrate to Android Lollipop. Therefore, it may not be a new version as such, but rather a solution to several of the problems that are evident in the current operating system of the Mountain View company for mobile devices (such as, for example, poor management of RAM memory or that autonomy has not evolved with the arrival of Project Volta). The fact is that the documents where Android M appear are quite clear.

It now remains to be seen whether the arrival of Android M, expected at the Mountain View company's next developer event (Google I/O) this May, confirms that permission management is a possibility. And, furthermore, whether this iteration is a evolution of Lollipop or definitely jump to version 6.0 –if so, its lifespan would be almost as short as that of Windows Me in its day–.

Source: Bloomberg.

Permission management on Android: what changes with Android M and what came next

Android M introduces granular control Permissions: not all permissions are accepted during installation, but can be granted or denied individually. Over time, the system added dialogues in real time, automatic revocation in inactive apps and managers by categoryUnderstanding the types of permits helps you make better decisions:

  • Installation permissions (normal and signature): limited access that the system grants upon installation; Low risk or restricted to apps signed by the system.
  • Runtime permissions (dangerous): they are requested when the app needs them; they cover sensitive data such as location, contacts, camera or microphone.
  • Special permissions (app operations): critical actions such as draw over other apps or manage notifications; these are configured in “Special app access.”
  • Permission groups: logical categories (e.g. SMS); the system attempts to reduce dialogues by grouping, although groups can change.

Managing Permissions on Android

Particularly sensitive permissions that should be monitored

  • Accessibility: essential for users with special needs, but its reach allows view and perform actions on screen. Malicious apps use it to capture passwords or control the device. Google is tightening its use and limiting apps that require it for inaccessible purposes.
  • device administrator: designed for work and safety environments. Granted, prevents uninstallation the app until you revoke it and can delete data or lock your computer. Use it only on trusted tools.
  • Show on other apps (floating screens): useful for bubbles and overlays, but can be used for visual phishing (tapping invisible buttons or entering credentials into a fake panel).
  • Access to todos los archivos: Android limits storage by default; this permission opens access to read, modify, and delete public files. It only makes sense in File managers, backups, antivirus, document editors, local search engines, encryption or migration.
  • media management: focused on photos and videos; provides the ability to modify or delete multimedia from other apps. Use it wisely.
  • Installing apps from the source that starts the process: possible vector for upload malware if an app tricks you into confirming installation.

Dangerous permissions on Android

How to change, revoke, and review permissions on Android

  1. Opens Settings > Applications > choose the app > Permissions to allow or deny each access.
  2. For sensitive permissions such as location, camera or microphone, you will find options like allow only in use, always ask o do not allow.
  3. En Security and privacy > Privacy > Permissions manager, check by type of permit what apps are using it.
  4. Activate the automatic revocation (pause unused apps) to have the system remove permissions from inactive apps.
  5. En privacy controls can disable globally access to camera o microphone.

Quick Tip: The Play Store doesn't always advance all permissions before installing. If you download APKs, analysis tools can show what will you request an app before installing it; and in alternative stores some tokens list permits previously.

Check permissions on your mobile

Good practices for users and developers

  • Ask for and grant the minimum: requests or accepts only the permissions that are essential for the action the user is performing.
  • Links permission to action: shows the dialog when the user clicks, for example, “record audio”, and explains why you need it.
  • Check dependenciesThird-party libraries may require additional permissions; evaluate and remove any unnecessary ones.
  • Transparency and indicators- Make it clear what data you use and when; if you access the camera or microphone, respect and complement the system indicators.

Disable app permissions

Install and uninstall more securely: Private and Archived Space

Beyond Android M, the system includes features that improve the safety and efficiency in app management:

  • Private space (or a second user profile): isolated environment for test apps without them accessing your data or the rest of the system. It is activated from Security and privacy > Privacy > Private space.
  • App archiving: frees up space by deleting the executable but retains data and permissions. When you restore, you resume the app just as you left it, without reconfiguring it.

Private space and app archiving

Controlling app permissions in Android 6.0 is one of the new features this system brings. Learn how to modify these permissions.

With Android M a new stage begins in which up to you what your apps share and when. Keep sensitive permissions (accessibility, administrator, overlay, files, media, and installation) in check, periodically review the Permissions manager and rely on features like automatic revocation, Private space y archivedWith these habits, you gain privacy, security, and performance without sacrificing functionality.