diff --git a/config/common.mk b/config/common.mk
index 1dd08ec640cc9695421f90e362a4bb6562e83f85..c9fb75e29090ae4f7f901cd42965b24cec7e3784 100644
--- a/config/common.mk
+++ b/config/common.mk
@@ -43,6 +43,12 @@ PRODUCT_COPY_FILES += \
     $(VENDOR_PATH)/config/permissions/eos-permissions.xml:$(TARGET_COPY_OUT_SYSTEM)/etc/default-permissions/eos-permissions.xml \
     $(VENDOR_PATH)/config/permissions/eos-allowlist.xml:$(TARGET_COPY_OUT_SYSTEM)/etc/sysconfig/eos-allowlist.xml
 
+ifneq ($(filter user,$(TARGET_BUILD_VARIANT)),)
+  # Do not include ih8sn on user build.
+  # Indeed, some security SDKs included in 3rd party apps can detect it.
+  INCLUDE_IH8SN ?= false
+endif
+
 # SafetyNet compatibility
 ifneq ($(filter official community partner,$(RELEASE_TYPE)),)
   # Ship ih8sn on community & official builds