Conversation

This matches the minimum API level required by the Play Store for both new apps and app updates, so this isn't an aggressive requirement. A significant example of these privacy/security improvements is API 28+ using a per-app-per-profile SELinux MLS level instead of per-profile.

12:15 AM · May 17, 2020Twitter Web App

That means apps targeting API 28+ each run in a unique security domain and cannot directly communicate or share data with each other. They can only do it via intents. Apps can no longer do things like making their files world-readable/world-writable to give other apps access.

Replying to

Most of the privacy and security improvements in major releases of AOSP are applied globally. Some of these changes break compatibility and need to be limited to newer API levels. Easy to see how preventing direct sharing/communication between apps was a break in compatibility.

Android 8.0 Behavior Changes | Android Developers

As another example, the GET_ACCOUNTS permission (part of the Contacts group) used to provide access to all the accounts in the profile. For API 26+ (Android 8), it doesn't do that anymore, case-by-case consent is needed via the user choosing an account:

developer.android.com

System and API behavior changes that can affect apps running on Android 8.0 Oreo.

That's similar to the official deprecation of the Storage permissions in Android 10 to force finer-grained requests including case-by-case consent via users choosing a file/directory via the system file manager (Storage Access Framework) including support for app-based providers.

Unfortunately, the Storage deprecation isn't actually mandatory for API level 29 (Android 10) due to backlash, but it will be for API level 30 (Android 11): developer.android.com/preview/privac Android 10 originally used emulation of top-level shared storage to force this on every app.