# sideloading

## RASP

RASP self-check compares the protected app’s own installer attribution against the configured trusted installation sources.

| Installed from | Installer attribution | Verdict          |
| -------------- | --------------------- | ---------------- |
| Google Play    | `com.android.vending` | Trusted source   |
| Chrome APK     | `com.android.chrome`  | Untrusted source |

### Trusted installation sources

Example configuration the RASP module reads to verify its own installer.

```
Google Play
com.android.vending

Huawei AppGallery
com.huawei.appmarket

Galaxy Store
com.sec.android.app.samsungapps

Xiaomi GetApps
com.xiaomi.mipicks
```

An app installed via any other installer is reported as **untrusted source**.

***

## Malware Detection

Malware Detection scans every other app on the device and classifies each app by its installer attribution.

| Other app on device | Installer attribution  | Per-app verdict              |
| ------------------- | ---------------------- | ---------------------------- |
| SocialChat          | `com.android.vending`  | trusted · matches Play       |
| BankApp             | `com.huawei.appmarket` | trusted · matches AppGallery |
| PuzzleGame          | `com.android.chrome`   | untrusted · sideloaded       |
| SuperUtil           | `adb / unknown`        | untrusted · adb install      |

### Trusted installation sources

Example configuration the Malware Detection module reads to classify every other app on the device.

```
Google Play
com.android.vending

Huawei AppGallery
com.huawei.appmarket

Add custom installer
e.g. enterprise MDM
```

Any app whose installer is not in this list is reported as **untrusted source**.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.talsec.app/appsec-articles/sideloading.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.