diff --git a/domain.te b/domain.te
index 34aa48f55225f700dd31b8af7bf73f2365fa9a42..7324738e9c3fd6c22a1af65a772205f3c4443739 100644
--- a/domain.te
+++ b/domain.te
@@ -534,3 +534,6 @@ neverallow domain ~service_manager_type:service_manager { add find };
 
 # logpersist is only allowed on userdebug/eng builds
 neverallow { domain userdebug_or_eng(`-logd -shell') } misc_logd_file:file rw_file_perms;
+
+# Prevent assigning non property types to properties
+neverallow domain ~property_type:property_service set;