This article provides an explanation why 3rd party apps are still able to access applications protected using the App Protection or App Control feature.
Applies to the following Sophos product(s) and version(s) Sophos MobileSophos Intercept X for Mobile Android
Operating systems Android
The Sophos Mobile / Intercept X for Mobile App Protection and App Control features use Android OS functionality that allows the control of a user’s access to the user interface of a protected / controlled application. Therefore, these functionalities can only prevent direct interaction with an app through its user interface.
It can't prevent the background execution of apps. Therefore, users might still be able to interact with a password-protected app through other apps like Google Assistant or through Android system functionality.
However, for App Control APIs from the device manufactures are available on certain device models to completely disable protected apps so that they also do not run in the background. Such APIs are available / used on:
On this kind of devices 3rd party apps are not able to access the secured apps.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. For technical support post a question to the community. Or click here for new feature/product improvements. Alternatively for paid/licensed products open a support ticket.