Paper Info
Title
Hardening the Client-Side: A Guide to Enterprise-Level Hardening of Web Browsers.
Abstract
Today, web browsers are a major avenue for cyber-compromise and data breaches. Web browser hardening, through high-granularity and least privilege tailored configurations, can help prevent or mitigate many of these attack avenues. For example, on a classic client desktop infrastructure, an enforced configuration that enables users to use one browser to connect to critical and trusted websites and a different browser for un-trusted sites, with the former restricted to trusted sites and the latter with JavaScript and Plugins disabled by default, may help prevent most JavaScript and Plugin-based attacks to critical enterprise sites. However, most organizations, today, still allow web browsers to run with their default configurations and allow users to use the same browser to connect to trusted and un-trusted sites alike. In this article, we present detailed steps for remotely hardening multiple web browsers in a Windows-based enterprise, for Internet Explorer and Google Chrome. We hope that system administrators use this guide to jump-start an enterprise-wide strategy for implementing high-granularity and least privilege browser hardening. This will help secure enterprise systems at the front-end in addition to the network perimeter.
Year
Venue
Field
2017
DASC/PiCom/DataCom/CyberSciTech
Client-side,Enterprise system,World Wide Web,Principle of least privilege,Computer science,Server,Data breach,Plug-in,The Internet,JavaScript
DocType
Citations 
PageRank 
Conference
0
0.34
References 
Authors
0
5
Name
Order
Citations
PageRank
Ananth A. Jillepalli101.69
Daniel Conte de Leon201.01
Stuart Steiner301.01
Frederick Sheldon48616.46
Michael Haney511.74