Skip to content
Log In

Google Chrome Current Windows Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • Download restrictions must be configured.

    Configure the type of downloads that Google Chrome will completely block, without letting users override the security decision. If you set this policy, Google Chrome will prevent certain types of d...
    Rule Medium Severity
    Show

  • Safe Browsing Extended Reporting must be disabled.

    Enables Google Chrome's Safe Browsing Extended Reporting and prevents users from changing this setting. Extended Reporting sends some system information and page content to Google servers to help d...
    Rule Medium Severity
    Show

  • Anonymized data collection must be disabled.

    Enable URL-keyed anonymized data collection in Google Chrome and prevent users from changing this setting. URL-keyed anonymized data collection sends URLs of pages the user visits to Google to make...
    Rule Medium Severity
    Show

  • Collection of WebRTC event logs must be disabled.

    If the policy is set to “true”, Google Chrome is allowed to collect WebRTC event logs from Google services (e.g., Google Meet), and upload those logs to Google. If the policy is set to “false”, or ...
    Rule Medium Severity
    Show

  • Web Bluetooth API must be disabled.

    Setting the policy to 3 lets websites ask for access to nearby Bluetooth devices. Setting the policy to 2 denies access to nearby Bluetooth devices. Leaving the policy unset lets sites ask for acc...
    Rule Medium Severity
    Show

  • Use of the QUIC protocol must be disabled.

    QUIC is used by more than half of all connections from the Chrome web browser to Google's servers, and this activity is undesirable in the DoD. Setting the policy to Enabled or leaving it unset al...
    Rule Medium Severity
    Show

  • Session only based cookies must be enabled.

    Cookies must only be allowed per session and only for approved URLs as permanently stored cookies can be used for malicious intent. Approved URLs may be allowlisted via the CookiesAllowedForUrls ...
    Rule Medium Severity
    Show

  • SRG-APP-000047

    Group
    Show

  • SRG-APP-000605

    Group
    Show

  • URLs must be allowlisted for Autoplay use.

    Controls the allowlist of URL patterns that autoplay will always be enabled on. If the "AutoplayAllowed" policy is set to "True" then this policy will have no effect. If the "AutoplayAllowed" polic...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules