Security News > 2021 > August > Microsoft Edge just got a 'Super Duper Secure Mode' upgrade

Microsoft Edge just got a 'Super Duper Secure Mode' upgrade
2021-08-05 10:38

Microsoft has announced that the Edge Vulnerability Research team is experimenting with a new feature dubbed "Super Duper Secure Mode" and designed to bring security improvements without significant performance losses.

When enabled, the new Microsoft Edge Super Duper Secure Mode will remove Just-In-Time Compilation from the V8 processing pipeline, reducing the attack surface threat actors can use to hack into Edge users' systems.

"This reduction of attack surface has potential to significantly improve user security; it would remove roughly half of the V8 bugs that must be fixed," explained Johnathan Norman, Microsoft Edge Vulnerability Research Lead. "This reduction in attack surface kills half of the bugs we see in exploits and every remaining bug becomes more difficult to exploit. To put it another way, we lower costs for users but increase costs for attackers."

While the JIT compiler is designed to increase performance by compiling computer during program execution, disabling it in Super Duper Secure Mode "Does not always have negative impacts."

While still in the experimental stage, Super Duper Secure Mode can be enabled by users of Microsoft Edge preview releases by going to edge://flags/#edge-enable-super-duper-secure-mode and toggling on the new feature.

When enabled, Super Duper Secure Mode disables JIT and enables Control-flow Enforcement Technology, an Intel hardware-based exploit mitigation designed to provide a more secure browsing experience.


News URL

https://www.bleepingcomputer.com/news/microsoft/microsoft-edge-just-got-a-super-duper-secure-mode-upgrade/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Microsoft 365 50 1369 2819 161 4399