Google Chrome Current Windows Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Network prediction must be disabled.
<VulnDiscussion>Enables network prediction in Google Chrome and prevents users from changing this setting. If you enable or disable this sett...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Metrics reporting to Google must be disabled.
<VulnDiscussion>Enables anonymous reporting of usage and crash-related data about Google Chrome to Google and prevents users from changing th...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Search suggestions must be disabled.
<VulnDiscussion>Search suggestion should be disabled as it could lead to searches being conducted that were never intended to be made. Enable...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Importing of saved passwords must be disabled.
<VulnDiscussion>Importing of saved passwords should be disabled as it could lead to unencrypted account passwords stored on the system from a...Rule Medium Severity -
SRG-APP-000080
<GroupDescription></GroupDescription>Group -
Incognito mode must be disabled.
<VulnDiscussion>Incognito mode allows the user to browse the Internet without recording their browsing history/activity. From a forensics pe...Rule Medium Severity -
Safe Browsing must be enabled.
<VulnDiscussion>Allows you to control whether Google Chrome's Safe Browsing feature is enabled and the mode it operates in. If this policy i...Rule Medium Severity -
SRG-APP-000231
<GroupDescription></GroupDescription>Group -
Browser history must be saved.
<VulnDiscussion>This policy disables saving browser history in Google Chrome and prevents users from changing this setting. If this setting i...Rule Medium Severity -
SRG-APP-000456
<GroupDescription></GroupDescription>Group -
The version of Google Chrome running on the system must be a supported version.
<VulnDiscussion>Google Chrome is being continually updated by the vendor in order to address identified security vulnerabilities. Running an ...Rule Medium Severity -
SRG-APP-000089
<GroupDescription></GroupDescription>Group -
Deletion of browser history must be disabled.
<VulnDiscussion>Disabling this function will prevent users from deleting their browsing history, which could be used to identify malicious we...Rule Medium Severity -
SRG-APP-000089
<GroupDescription></GroupDescription>Group -
Prompt for download location must be enabled.
<VulnDiscussion>If the policy is enabled, the user will be asked where to save each file before downloading. If the policy is disabled, downl...Rule Medium Severity -
SRG-APP-000089
<GroupDescription></GroupDescription>Group -
Download restrictions must be configured.
<VulnDiscussion>Configure the type of downloads that Google Chrome will completely block, without letting users override the security decisio...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.