Brendon
Baxter

Busting the myths about sideloaded apps

Brendon Baxter

Dec 7, 2021

7 min read

Most Operating System providers like Apple, Microsoft and Android, and device manufacturers like Samsung, Huawei, etc. have their own stores for providing applications/ software to users. These stores provide only safe and approved apps to ensure the safety of their users.

What is sideloading?

Sideloading of applications generally refers to the act of downloading and installing applications from outside the operating systems’ app store, like Google Play Store, Apple App Store, Microsoft Store and so on, or device manufacturer’s app store, like Samsung Galaxy Store, Realme App Market and so on.

There are multiple ways of doing this: 1) by downloading the installation file from browsers and manually installing them, 2) by using any third-party app stores other than the OS specified or device manufacturer specified ones and 3) by using an EMM or UEM like Hexnode.

Why are sideloaded apps a necessity?

The main reason for sideloading apps is that not all apps are available through the app stores. Apps may not get published on app stores for any or all of many reasons. So, to use these apps, there is no other way but to sideload them.

Sideloaded apps prove themselves useful in situations where organizations need to use in-house apps. Some organizations have apps built only to be used inside it and these apps cannot be published on the public app store. So, these apps have to be sideloaded to the work devices registered under the organization.

Another case where sideloaded apps are necessary is when app developers need to test out their app before it gets published in the app stores. The process of publishing an app on an app store requires the developer to test out the app and only finished products are usually published in the stores.

So, sideloaded app comes handy when essential apps are not listed in authorized app stores. But sideloading is also used to install apps like games, streaming apps and so on since some of these might not be allowed on the app stores.

How to install sideloaded apps on Android/ Windows/ iOS/ macOS/ Fire OS

Android is probably the easiest device to sideload applications. Just changing a setting can allow sideloading in Android devices. Follow these steps to sideload apps in Android:

  1. Download the .apk file for the app from a browser or a third-party app store.
  2. Using a file explorer open the .apk file.
  3. Allow permission for the source (the browser or the third-party store) to install applications. The app gets installed.

Sideloading apps in Windows is also a very simple process, just follow these steps:

  1. Go to Settings.
  2. Select the Updates & Security tab.
  3. From the “For developers” section, enable sideloaded apps.

Most of the time even this process won’t be needed to sideload apps on Windows devices. Just downloading and running the installation file would be necessary.

Apple iOS devices are probably the hardest to sideload apps on. Normally sideloading of apps is not possible in iOS devices. To sideload apps on an iOS device the device has to be jailbroken. But Apple does not promote this procedure.

Compared to iOS, sideloading of apps is rather simple in macOS devices. Unlike iOS devices, macOS devices don’t have to be jailbroken to sideload apps. But Gatekeeper has to be disabled or bypassed to sideload apps in macOS devices. To allow the installation of approved non-store apps in macOS devices follow these steps:

  1. Go to Apple menu --> System Preferences.
  2. Navigate to the General tab in Security & Privacy.
  3. Unlock the settings by clicking the lock icon on the bottom left and entering the admin credentials.
  4. Select the “App Store and identified developers” setting under “Allow apps downloaded from:”.

Terminal command can be used to allow apps from any source to be installed in macOS devices.

Sideloading in Fire OS devices generally means the installation of Android apps on the device. To sideload apps in Fire OS devices follow these steps:

  1. The web browser or the third-party app store from which .apk files have to be downloaded, has to be recognized as a Trusted source.
  2. For this go to Security and Privacy and select Apps from unknown sources.
  3. Select the app used to download the .apk file and toggle the switch beside it.
  4. Now, all there is to do is download the app and install it.
Featured resource

Hexnode App Management Solution

Learn how Hexnode’s App Management solution helps businesses ensure seamless deployment, monitoring, and supervision of enterprise apps on end-user devices.

Download datasheet

Risks associated with sideloaded apps

Although sideloading is necessary in certain situations, there are a lot of risks associated with it. The main point of OS providers recommending users to install apps from the store is to provide more security. Apps posted in stores like Apple App Store, Microsoft Store, Google Play Store, etc. are checked for malware and approved only if the app is safe.

Sideloading apps are risky because they are not checked for any malicious codes or malware by anyone. So, by installing these apps, you could introduce some kind of malware into your device. Some apps might contain spyware associated with them and they might gather personal information from your device and send it to unwanted personnel.

A popular way of sideloading apps is using third-party app stores. But have you ever considered the fact that these stores themselves can be harmful? Well, some of the third-party app stores (websites as well as apps) might be infected and can damage your devices. User information used in these stores, like user credentials and personal information, is vulnerable and totally under the control of unknown people.

Some apps posted online, that are generally clean, might be affected by malicious entities if they don’t have a proper safety structure. This means that, if a non-harmful app is not provided with a proper safety structure, it might be modified by someone and posted online. When such incidents occur people might install the modified app thinking that the app is safe to use. This can cause problems in the user’s device and also destroy the reputation of the original app developer.

Safely sideload apps to work devices using UEM

As mentioned earlier, sometimes organizations require in-house apps that can’t be posted in public stores. A few ways of distributing these apps are:

  • Using mass storage devices to install the app in each device.
  • By posting it online so that users can install it themselves.

The first method is a very tedious task and the second one is not very safe.

This is where UEMs can help organizations. UEMs like Hexnode can be used to send not only store apps but also custom-built apps. Using UEMs, apps can be remotely deployed on devices enrolled in an organization. Hexnode supports remote and silent installation of in-house apps on organizational devices running on multiple platforms like iOS, Android, etc.

The apps sent through UEMs do not require approval from the OS providers. Even though the apps are not checked by the OS, the process is safe and secure as the app is directly pushed to devices by the organization without any outside interference.

To conclude

Sideloading apps is not always a risky business. Sideloading is necessary so it is always better to take a closer look at the source of the app and all the app itself. Keep an eye out for apps that request totally unnecessary permissions. For example, if you install a calculator app on your phone from a third-party store and it asks for permission to access the camera or storage, keep an eye out for that app.

Share

Brendon Baxter

Product Evangelist@Hexnode. Read. Write. Sleep. Repeat.

Share your thoughts