Steps to Secure Web Browsing

Abstract: Web browsers pose a unique risk to enterprise infrastructure because of their frequent
exposure to untrusted dynamic content. Configuring browser security settings is
challenging due to uncertainty of both attack mitigation effectiveness and impact on end
users. A key goal of this paper is to avoid impact to users while mitigating as many
attacks as possible. The following guidance uses a statistics-based approach to identify
three mitigations in commonly-used web browsers that, in combination, will ward off
nearly all publicly known attacks. Further mitigations are provided at the end of the
document for administrators seeking to defend against adversaries with significant
resources.

Date Published:

Last Reviewed: 08 May 2018

Dissemination Control: N/A

Length: 3 page(s)

Format: pdf

Type: Reference/Overview; Factsheet

Tags: Web Browser; Mitigations; Secure Guidance