February 22, 2017
Most people get their Android apps from Google Play. It is usually the simplest and most secure option for them. But there are also many people who do …
June 2, 2016
App stores can work well without any tracking at all Attackers are increasingly seeing app stores as a prime attack vector, whether it is aimed at the …
December 29, 2015
It is time to update to a stronger signing key for your Android app! The old default RSA 1024-bit key is weak and officially deprecated. What? The …
December 9, 2015
I was just in Athens for the “Reproducible Builds Summit“, an Aspiration-run meeting focused on the issues of getting all software builds to be …
June 2, 2015
One core piece of our approach is thinking about very high risk situations, like Ai Weiwei or Edward Snowden, then making the tools for operating …
February 11, 2015
With F-Droid, we have been working towards getting a complete app distribution channel that is able to reproducibly build each Android app from …
September 18, 2014
There are many ideas of core architectures for providing digital services, each with their own advantages and disadvantages. I break it down along the …
June 30, 2014
We now have an official FDroid app repository that is available via three separate methods, to guarantee access to a trusted distribution channel …
June 6, 2014
One thing we are very lucky to have is a good community of people willing to test out unfinished builds of our software. That is a very valuable …
November 18, 2013
As we’ve touched upon in previous blog posts the Google Play model of application distribution has some disadvantages. Google does not make the Play …