UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

Safe Browsing must be enabled


Overview

Finding ID Version Rule ID IA Controls Severity
V-35792 DTBC-0038 SV-47079r2_rule ECSC-1 Medium
Description
"Enables Google Chrome's Safe Browsing feature and prevents users from changing this setting. If you enable this setting, Safe Browsing is always active. If you disable this setting, Safe Browsing is never active. If you enable or disable this setting, users cannot change or override this setting in Google Chrome. If this policy is left not set, this will be enabled but the user will be able to change it." - Google Chrome Administrators Policy List Safe browsing uses a signature database to test sites when they are be loaded to ensure they don't contain any known maleware.
STIG Date
Google Chrome v24 Windows Benchmark 2013-03-07

Details

Check Text ( http://oval.mitre.org/XMLSchema/oval-definitions-5 )
Universal method (Requires Chrome Browser v15 or later):
1. In the omnibox (address bar) type chrome://policy
2. If SafeBrowsingEnabled is not displayed under the Policy Name column or it is not set to true under the Policy Value column, then this is a finding.

Windows method:
1. Start regedit
2. Navigate to HKLM\Software\Policies\Google\Chrome\
3. If the SafeBrowsingEnabled value name does not exist or its value data is not set to 1, then this is a finding.
Fix Text (F-40340r1_fix)
Valid for Chrome Browser version 14 or later.

Windows registry:
Key Path: HKLM\Software\Policies\Google\Chrome\
Value Name: SafeBrowsingEnabled
Value Type: Boolean (REG_DWORD)
Value Data: 1

Windows group policy:
Policy Path: Computer Configuration\Administrative Templates\Google\Google Chrome\
Policy Name: Enable Safe Browsing
Policy State: Enabled
Policy Value: N/A