Chrome From A Security Perspective
Google’s Chrome browser has become the most widely used browser on the market but is it a good fit your company and your security policies?
Google’s Chrome browser has become the most widely used browser on the market but is it a good fit your company and your security policies? Chrome is being used globally by both individuals and companies alike to improve performance, extend their functionality on the web, and increase productivity. So the question is worth asking, how does the Chrome browser look from a security perspective?
Often times choosing a new browser is a heavy task when you have a diverse workforce that is accustomed to the look and feel of IE or Safari. For many, the decision comes down to what security benefits the browser has and how their organizations want to manage their browsers. There are some tangible security benefits that Chrome brings to the table to improve the security in any company.
Enforce Policies and Extensions from the Cloud
Google Chrome and G Suite allow you to manage exactly what can be installed into their instance of Chrome, and how. This eliminates risk in unwanted software - think extensions that leak data to unknown cloud services.
Enforce Secure Corporate Profiles
Each user has their own company Chrome profile, allowing for secure, easy roaming to and from devices - managing what can be installed and what runs, everywhere.
Monitor Permissions and Ensure Data Privacy
With Chrome and other software tools, you can see exactly what extensions are running, get an idea of their privacy, and audit your organization for unwanted extensions.
Allow or Block Website Access
Who needs Websense or Cisco Umbrella when Chrome can do it for you?
Protect Your Data with Site Isolation
Admins can increase security on untrusted sites using built-in site isolation.
Easy, Extensible Ad-Blocking
Install a centrally managed adblock or a free blocker from the Chrome store and remove pesky ads, tracking cookies, and block malvertising.
Browser Defense Platforms
In my view Chrome security should be augmented with a browser defense platform like Apozy. Apozy decides on the safety of a site in real-time and delivers it in a sandbox, isolating threats from users. Additionally it can monitor and block untrusted Chrome extensions, and reports a timeline of data behind SSL.
I find that companies choosing full G Suite/Chrome deployments are often fast moving, quickly growing, forward thinking organizations. If you feel like your company fits the bill here's some must have resources that have really helped me in the past.
Windows Chrome Browser Deployment Guide
Mac Chrome Browser Deployment Guide & How to Make Chrome Default
Make Chrome the default Browser (Windows)
Choosing Chrome Native Browser Isolation
Chrome has come leaps and bounds since it's inception and it's proven to be a highly extensible and usable browser with security features that can't be matched.