Details
Control whether Google Chrome’s Safe Browsing feature is enabled and the mode it operates in. If you set this setting as mandatory, users cannot change or override the Safe Browsing setting in Google Chrome.
If this setting is left not set, Safe Browsing will operate in Standard Protection mode but users can change this setting.
No Protection (0): Safe Browsing is never active
Standard Protection (1): Safe Browsing is active in the standard mode
Enhanced Protection (2): Safe Browsing is active in the enhanced mode
The recommended state for this setting is: Standard Protection (1) or higher
Rationale:
Google Safe Browsing will help protect users from a variety of malicious and fraudulent sites, or download dangerous files.
NOTE: Google recommend using Enhanced Safe Browsing Mode (2). Turning on Enhanced Safe Browsing will substantially increase protection from dangerous websites and downloads, but will share more date with Google.
For more details please refer to the items in the References section below..
Impact:
None – This is the default behavior (Standard Protection).
Solution
To establish the recommended configuration via Group Policy, set the following UI path to Enabled: Standard Protection:
Computer ConfigurationPoliciesAdministrative TemplatesGoogleGoogle ChromeSafe Browser settingsSafe Browsing Protection Level
Default Value:
Unset (Same as Standard Protection, but user can change)
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.