Android’s evolution has seen a shift from openness and user control towards a vendor-controlled environment. The upcoming Android 14 release tightens restrictions on certificate authority (CA) certificates, making it impossible to modify trusted certificates on rooted devices. This poses challenges for developers and researchers interested in controlling their device’s trust. The change began with Android 7, where control over CAs was limited to fixed lists provided by the OS vendor. Android 14 introduces remotely updatable CA certificates, allowing faster updates for Google but rendering manual modifications ineffective. The implementation of this feature raises concerns about user control and the impact on forks of Android and advanced configuration tools.
https://httptoolkit.com/blog/android-14-breaks-system-certificate-installation/