Google Chrome Current Windows Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Online revocation checks must be performed.
<VulnDiscussion>By setting this policy to true, the previous behavior is restored and online OCSP/CRL checks will be performed. If the policy...Rule Medium Severity -
SRG-APP-000206
<GroupDescription></GroupDescription>Group -
Web Bluetooth API must be disabled.
<VulnDiscussion>Setting the policy to 3 lets websites ask for access to nearby Bluetooth devices. Setting the policy to 2 denies access to ne...Rule Medium Severity -
SRG-APP-000383
<GroupDescription></GroupDescription>Group -
Use of the QUIC protocol must be disabled.
<VulnDiscussion>QUIC is used by more than half of all connections from the Chrome web browser to Google's servers, and this activity is undes...Rule Medium Severity -
SRG-APP-000080
<GroupDescription></GroupDescription>Group -
Session only based cookies must be enabled.
<VulnDiscussion>Cookies must only be allowed per session and only for approved URLs as permanently stored cookies can be used for malicious i...Rule Medium Severity -
SRG-APP-000047
<GroupDescription></GroupDescription>Group -
SRG-APP-000605
<GroupDescription></GroupDescription>Group -
URLs must be allowlisted for Autoplay use.
<VulnDiscussion>Controls the allowlist of URL patterns that autoplay will always be enabled on. If the "AutoplayAllowed" policy is set to "Tr...Rule Medium Severity -
SRG-APP-000206
<GroupDescription></GroupDescription>Group -
SRG-APP-000206
<GroupDescription></GroupDescription>Group -
Import AutoFill form data must be disabled.
<VulnDiscussion>This policy forces the autofill form data to be imported from the previous default browser if enabled. If enabled, this polic...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
SRG-APP-000039
<GroupDescription></GroupDescription>Group -
Firewall traversal from remote host must be disabled.
<VulnDiscussion>Remote connections should never be allowed that bypass the firewall, as there is no way to verify if they can be trusted. Ena...Rule Medium Severity -
SRG-APP-000206
<GroupDescription></GroupDescription>Group -
Site tracking users location must be disabled.
<VulnDiscussion>Website tracking is the practice of gathering information as to which websites were accesses by a browser. The common method ...Rule Medium Severity -
SRG-APP-000141
<GroupDescription></GroupDescription>Group -
Sites ability to show pop-ups must be disabled.
<VulnDiscussion>Chrome allows you to manage whether unwanted pop-up windows appear. Pop-up windows that are opened when the end user clicks a...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.