Google Expands Binary Transparency for Android to Protect Against Supply Chain Attacks

Google has expanded Binary Transparency for Android to protect against supply chain attacks by publicly verifying app integrity. The initiative, announced by Google's product and security teams, introduces a public ledger ensuring Android apps match Google's intended builds. This builds on Pixel Binary Transparency, which was introduced in October 2021. The system aims to confirm that distributed apps have not been tampered with or altered. No specific vulnerabilities, CVE IDs, or technical implementation details were provided in the announcement.