We are pleased to announce the enterprise-ready release of the security baseline for Microsoft Edge version 98!
We have reviewed the settings in Microsoft Edge version 98 and updated our guidance with the addition of one setting. We’re also highlighting another new setting we would like you to consider testing, and one new setting you should consider based on your support needs. A new Microsoft Edge security baseline package was just released to the Download Center. You can download the version 98 package from the Security Compliance Toolkit.
Enhance security State (Test)
This new and exciting setting (Microsoft Edge\Enhance the security state of Microsoft Edge), which we initially called Super Duper Secure Mode (yes we really did) is used to improve browser security by adding an extra layer of protection when browsing the web. This setting helps protect against unknown exploits (also referred to 0-days). This setting does incur some compatibility costs at this time (in particular, web assembly is not supported) so we are not adding this to the security baseline just yet. However, we are recommending that security-conscious enterprises look to see whether they can safely deploy the new setting within their environment. Additional details can be found here.
In-App Support (Consider)
While In-App Support (Microsoft Edge\In-app support Enabled) is not a setting we are adding to the baseline, we feel it’s worth mentioning as this new setting allows users to directly interact with Microsoft support, rather than their local help desk. This setting is enabled by default, but highly managed environments might consider disabling it, depending on their support methods.
U2F Security Key API (Disable)
This setting (Microsoft Edge\Allow using the deprecated U2F Security Key API (deprecated)) is a stop gap setting that allows an organization to continue to use the legacy U2F Security Key API. This setting is scheduled to be removed in version 104 and any sites/services dependent on this will be totally broken at that time, unless migrated to WebAuthN. We are enforcing a setting of Disabled until such time as the feature is removed.
Microsoft Edge version 98 introduced 10 new computer settings and 10 new user settings. We have included a spreadsheet listing the new settings in the release to make it easier for you to find them.
As a friendly reminder, all available settings for Microsoft Edge are documented here, and all available settings for Microsoft Edge Update are documented here.
Please continue to give us feedback through the Security Baseline Community or this post.
Source:
Security baseline for Microsoft Edge v98
We are pleased to announce the enterprise-ready release of the security baseline for Microsoft Edge version 98!
techcommunity.microsoft.com
