Few days back, Google had released Chrome plugin for IE that promises to boost IE speed and give the latest features like HTML 5. Seriously, Microsoft today felt the heat and warned Internet Explorer users that they could double their security vulnerabilities if they installed and used Google Chrome Frame.
Well said Microsoft, but can you list down those vulnerabilities. Or shall I list the 10x times more critical issues with IE ?
Here is what Microsoft’s representative has to say about this:
“It’s not necessarily that plug-ins aren’t or can’t be secure, but that running a browser within a browser doubles the potential attack surface in a way that we don’t see is particularly helpful,” said Amy Bazdukas, Microsoft’s general manager for IE.
He said that by running Chrome Frame, Internet Explorer 8 (IE8) users were unwittingly discarding all the private browsing protections that Microsoft built into its newest browser. Really? uhmmm
“Chrome Frame breaks the privacy model of IE,” she claimed. “Users are not going to be able to use IE’s privacy features, something that’s not made apparent to users. They’re essentially circumvented.”
Bazdukas also mentioned that IE8’s browser history deletion feature is crippled by Chrome Frame.
In a statement earlier today, Microsoft said using Chrome Frame is not “a risk we would recommend our friends and families take.” Bazdukas, however, got more specific.
“We’re not saying that there’s a specific security vulnerability in Chrome Frame, but the concern that plug-ins in general have had regarding security issues adds a new potential threat when Chrome Frame is used. Users have told us that they’re looking for a better and safer browser, and we can’t see how [using Chrome Frame] will deliver that.”
Practically speaking, if users had been demanding this since years, and Microsoft is doing it right, why are they still 2nd most unsecured browser?
Someone is jealous.