Google recently changed its Play Developer Program Policies to only allow Android apps to be updated through Google Play. The move makes it much more difficult to turn a benign app into a malicious one once it leaves Google Play. How much more security the policy change brings will depend on the technology Google uses to authenticate updates. Google will have to maintain a relatively robust and complex certificate infrastructure, security expert says. Android is the No. 1 target for cybercriminals, who distributed malware through forums or rogue app stores.”]