diff --git a/domain.te b/domain.te
index 53ee2a745c5eb5739dd7b4ca2937bee1d69ff871..13bfe02e5fc3907acf21d2d4546799c50a8db1b5 100644
--- a/domain.te
+++ b/domain.te
@@ -533,3 +533,6 @@ neverallow domain ~service_manager_type:service_manager { add find };
 
 # logpersist is only allowed on userdebug/eng builds
 neverallow { domain userdebug_or_eng(`-logd -shell') } misc_logd_file:file rw_file_perms;
+
+# Prevent assigning non property types to properties
+neverallow domain ~property_type:property_service set;