Skip to content
Log In

Microsoft Edge Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • SRG-APP-000141

    Group
    Show

  • Guest mode must be disabled.

    Enabling Guest mode allows the use of guest profiles in Microsoft Edge. In a guest profile, the browser does not import browsing data from existing profiles, and it deletes browsing data when all g...
    Rule Medium Severity
    Show

  • SRG-APP-000156

    Group
    Show

  • Relaunch notification must be required.

    Users must be required to restart the browser to finish installation of pending updates and prevent users from continually using an old/vulnerable browser version.
    Rule Medium Severity
    Show

  • SRG-APP-000157

    Group
    Show

  • SRG-APP-000141

    Group
    Show

  • Use of the QUIC protocol must be disabled.

    QUIC is used by more than half of all connections from the Edge web browser to Google's servers, and this activity is undesirable in the DoD. If you enable this policy or don't configure it, the Q...
    Rule Medium Severity
    Show

  • SRG-APP-000141

    Group
    Show

  • The list of domains media autoplay allows must be allowlisted if used.

    Define a list of sites, based on URL patterns, that are allowed to autoplay media. If this policy is not configured, the global default value from the AutoplayAllowed policy (if set) or the user's...
    Rule Low Severity
    Show

  • SRG-APP-000141

    Group
    Show

  • Visual Search must be disabled.

    Visual Search allows for quick exploration of more related content about entities in an image. If this policy is enabled or not configured, Visual Search will be enabled via image hover, context m...
    Rule Medium Severity
    Show

  • SRG-APP-000141

    Group
    Show

  • Copilot must be disabled.

    The Sidebar is a launcher bar on the right side of Microsoft Edge's screen. If this policy is enabled or not configured, the Sidebar will be shown. If this policy is disabled, the Sidebar will nev...
    Rule Medium Severity
    Show

  • SRG-APP-000080

    Group
    Show

  • Session only-based cookies must be enabled.

    Cookies must only be allowed per session and only for approved URLs as permanently stored cookies can be used for malicious intent. Approved URLs may be allowlisted via the "CookiesAllowedForUrls...
    Rule Medium Severity
    Show

  • SRG-APP-000141

    Group
    Show

  • FriendlyURLs must be disabled.

    If FriendlyURLs are enabled, Microsoft Edge will compute additional representations of the URL and place them on the clipboard. This policy configures what format will be pasted when the user past...
    Rule Medium Severity
    Show

  • Site tracking of a user’s location must be disabled.

    Set whether websites can track users' physical locations. Tracking can be allowed by default ("AllowGeolocation") or denied by default ("BlockGeolocation"), or the user can be asked each time a web...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules