Web browsing activity is a favored attack vector for criminals and nation states. As such, the browser is a high-value target. Moreover, the browser is the gateway to cloud applications. Compromising the browser enables compromise of what are often end-to-end ‘protected’ cloud applications. In addition, the browser is also a gateway to the enterprise network, as that is the physical location of the browser. It has access both the Web and, if compromised, the enterprise network. In addition, while particular applications may protect against compliance process violations, such as redacting personally identifiable information (PII) or rendering a particular screen as not selectable or un-printable, browsers rarely have such controls or if they do, they are often easily circumvented.
The Productive Browser Project is a continuation of the previously completed Virtual Browser Project. The primary goal of the Productive Browser Project is to determine whether a virtual browser can provide sufficient security with minimal impact on the productivity of a typical enterprise end user. This project focuses on validating the security properties hypothesized as a result of isolating the web browser through virtualization technology. The security tests feature many of the typical attacks encountered by enterprise users and compare the security of a Virtual Browser to Google Chrome.