Details
Determines whether a Google Chrome process is started on OS login that keeps running when the last browser window is closed, allowing background apps to remain active. The background process displays an icon in the system tray and can always be closed from there. If this policy is set to True, background mode is enabled and cannot be controlled by the user in the browser settings. If this policy is set to False, background mode is disabled and cannot be controlled by the user in the browser settings. If this policy is left unset, background mode is initially disabled and can be controlled by the user in the browser settings.’ – Google Chrome Administrators Policy ListThis setting, if enabled, allows Google Chrome to run at all times. There is two reasons that this is not wanted. First, it can tie up system resources that might otherwise be needed. Second, it does not make it obvious to the user that it is running and poorly written extensions could cause instability on the system.
Solution
Windows group policy:
1. Open the group policy editor tool with gpedit.msc
2. Navigate to Policy Path: Computer ConfigurationAdministrative TemplatesGoogleGoogle Chrome
Policy Name: Continue running background apps when Google Chrome is closed
Policy State: Disabled
Policy Value: N/A
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: System and Communications Protection.This control applies to the following type of system Windows.
References
- 800-53|SC-18(3)
- CAT|II
- CCI|CCI-001695
- Rule-ID|SV-221570r615937_rule
- STIG-ID|DTBC-0017
- STIG-Legacy|SV-57587
- STIG-Legacy|V-44753
- Vuln-ID|V-221570