Windows 11 app store may create security issues
Microsoft’s new-look app store for Windows 11 will not operate quite like other major marketplaces
When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.
Alarm bells are beginning to be raised over perceived limitations of the new-lookMicrosoftStore, which was unveiled last month at theWindows 11launch.
During the event, Microsoft celebrated the fact its new store will be open to a much wider range of third-party applications built on a larger selection of frameworks, including Win32, .Net, UWP, Java and more.
However, the store’sterms and conditionsreveal that the update process will differ slightly depending on application type. Namely, users of software “packaged as a Win32 app” will not receive updates from the Microsoft Store directly, but will be responsible for installing patches manually via the application itself.
Beyond the inconsistent user experience, commentators have suggested this quirk will allow updates to circumvent Microsoft’s checks and balances, which are designed to ensure only legitimate applications are distributed via the store. Previously, Microsoft had claimedallapplications hosted on the store will be “tested for security, family safety and device compatibility”.
Microsoft Store on Windows 11
When Microsoft announced it would deliver a much-needed upgrade to its official app marketplace, the greatest emphasis was placed on the visual overhaul, which will bring the store in line with theWindows 11aesthetic.
The introduction of Android applications to Microsoft Store also drew headlines. With Windows 11, users will be able to run Android apps directly from their desktop, albeit only those hosted onAmazon’s app store.
However, it appears closer attention is now being paid to the inner workings of the marketplace and how this might affect the end user.
Are you a pro? Subscribe to our newsletter
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
On Twitter, Microsoft developer Scott Hanselman called criticism of the app store’s update process “misleading”. “Apps can use MSIX and update. It says on each app page if it updates itself or if the store does. It’s pretty clear,” he noted.
Here, he refers to the fact that Win32 apps can be packaged as MSIX (a Windows app package format) in order to receive automatic updates via the Microsoft Store. MSIX can be considered an evolution ofMSI, an older package format that will not be compatible with auto updates.
However, asanother Twitter userpoints out, MSIX is currently only used by a minority of applications.The Register, meanwhile, suggested it is impractical to ask users to understand the difference between MSIX and MSI.
Microsoft has not yet responded to our request for an official response to the security concerns and clarification over whether the company will seek to create consistency in the update process across all app types.
Update:A Microsoft spokesperson has since provided the following statement:
“Microsoft Store is committed to protecting our customers’ security and privacy. It is a priority for Microsoft to ensure that all our products and services comply with applicable law. We vet developers who publish to the Microsoft Store on Windows 11, and the apps that are installed have undergone security and device compatibility checks.”
Joel Khalili is the News and Features Editor at TechRadar Pro, covering cybersecurity, data privacy, cloud, AI, blockchain, internet infrastructure, 5G, data storage and computing. He’s responsible for curating our news content, as well as commissioning and producing features on the technologies that are transforming the way the world does business.
HPE reveals critical security bug affecting networking access points
Cybersecurity is business survival and CISOs need to act now
New Secretlab Skins Lite let you overhaul the look of your chair for under $100
