Security News > 2021 > August > Microsoft Launches JIT-Free 'Super Duper Secure Mode' Edge Browser Experiment
Security engineers at Microsoft plan to rip out a key performance feature from the Edge browser in an experiment aimed at better measuring the tradeoffs between security, optimization and performance.
According to Microsoft's Johnathan Norman, browser makers have traditionally been willing to absorb the security cost to ship "Fast" browsers but by disabling JIT from Edge, there is a significant attack surface reduction that could significantly improve user security.
In addition to removing JIT, Norman said the browser would be fitted with Intel Corp's new CET, a hardware-based security feature that helps to block certain types of software exploitation.
"Anecdotally, we find that users with JIT disabled rarely notice a difference in their daily browsing," Norman said, even arguing that the JIT-free browser "Does not always have negative impacts."
Microsoft hopes to use the results from the experiment to answer the question of whether the performance gains provided by JIT are worth the resulting security bugs, updates and the missing security mitigations.