Detecting malware when deploying 

Android

 apps from 

BlackBerry UEM

You can use 

BlackBerry UEM

 to distribute hosted 

Android

 apps to users' devices. 

BlackBerry Protect

 adds a new layer of security to this feature by giving 

UEM

 the ability to scan hosted 

Android

 apps (.apk) that are uploaded to 

UEM

 to detect potential malware.

When you upload an app to the management console, the app hash is sent to 

CylanceINFINITY

. If 

CylanceINFINITY

 does not recognize the hash because it has not analyzed the app previously, the app files are uploaded. 

CylanceINFINITY

 analyzes the app files and generates a confidence score that it returns to 

UEM

.

The app appears in the app list while the scan is in progress. If the app is not identified as malware, it remains on the app list. If the app is identified as malware, the app is automatically removed from the app list. If an app is assigned to a user or group while the scan is in progress, it will not be sent to devices until the scan is complete.

CylanceINFINITY

 retains app binaries and a corresponding confidence score for security purposes. The confidence score for an app can change if the same app is processed again. Whenever you upload a new version of an app, 

UEM

 sends the app files to 

CylanceINFINITY

 for analysis and scoring.