diff --git a/untrusted_app.te b/untrusted_app.te
index c97b4513b8212c429aa286f23ce88d106fb3489d..ea20e56279f34db12e097c03ecf6cc7df209fb5b 100644
--- a/untrusted_app.te
+++ b/untrusted_app.te
@@ -95,3 +95,7 @@ neverallow untrusted_app service_manager_type:service_manager add;
 neverallow untrusted_app property_socket:sock_file write;
 neverallow untrusted_app init:unix_stream_socket connectto;
 neverallow untrusted_app property_type:property_service set;
+
+# Allow verifier to access staged apks.
+allow untrusted_app { apk_tmp_file apk_private_tmp_file }:dir r_dir_perms;
+allow untrusted_app { apk_tmp_file apk_private_tmp_file }:file r_file_perms;
\ No newline at end of file