Author Archives: Google Chrome

Helping families develop healthy digital habits with Chromebooks

Parents care deeply about helping their kids build a positive and healthy relationship with technology. Last year, we introduced the Family Link app to help parents stay in the loop with how their children are using Android devices. Laptops also play an important role at home, with just over 50% of kids between 6-12 sharing or owning a laptop device. Today we’re sharing more Family Link features that can help parents of kids who use Chromebooks, like setting time limits, managing the apps kids can download and more.

Chromebooks enable families to work, play, and learn on the same device. The Family Link app can help parents set some digital ground rules as their kids are exploring online on their Chromebooks.

iamge2

Child view of Family Link on a Chromebook, and Parent view of Family Link on an Android device.

Keep an eye on screen time

It’s up to parents to decide the right amount of screen time for their kids. Family Link supports you by making it easy to set screen time limits and establish bedtime hours. Family Link also offers activity reports to show parents and kids how much time is spent on their favorite apps.

Guide kids to good content

It’s not just about how much time kids spend on their devices, it’s about the quality of that time as well. Family Link allows parents to customize a list of websites that kids can visit, and review and approve the apps they can download from Google Play, such as YouTube Kids or Google Play Books. Parents can also hide individual apps when necessary, and manage in-app purchases within apps already installed on the Chromebook.

Manage Google Accounts and Chromebooks from anywhere

Parents can also manage settings for their child’s Google account, and remotely lock supervised accounts on the Chromebook if necessary. This holds true whether the Chromebook is shared by the whole family, or is used only by the child.

These are just the latest features we’re rolling out to help families. As we continue to build new tools for families, please share your ideas and feedback with us, so we can learn how we can continue building features that matter to you.

Source: Google Chrome


Get quizzing with locked mode, and grade away with Classroom

Earlier this year, we announced locked mode—a new way to ensure students are distraction-free when taking Quizzes in Google Forms. We’ve also been working on a better grading experience in Classroom. We’re now opening up locked mode and Gradebook via a beta program, so sign up to express interest.

Show what you know with locked mode

For a lot of teachers, a day in the life might look like this: teach innovatively and creatively, quiz without distractions, grade efficiently, give thoughtful and constructive feedback, repeat. Teachers assess knowledge and check for understanding every single day, and many use Quizzes in Google Forms to do just that. But we’ve heard feedback from teachers that they want to ensure their students aren’t navigating to other browser tabs while taking quizzes. Available only on managed Chromebooks, locked mode prevents students from navigating away from the Quiz in their Chrome browser until they submit their answers. Teachers can enable locked mode with a simple checkbox in Google Forms, giving them full control over assessments.

Built-in Chrome OS accessibility tools such as ChromeVox, select-to-speak and visual aids— including high contrast mode and magnifiers—are all available when using locked mode. And to support students who use Chrome extensions during test taking, teachers can find out which extensions are available with locked mode. Introducing new tools means extra support: we’ve created a step-by-step guidebrief animated tutorial, and new Help Center instructions for Instructional Coaches, PD partners, and teachers to make learning how to use locked mode even easier. Don’t yet have Chromebooks and want to learn more? Get in touch.

To streamline the assignment process, we’ve also added the ability for all Classroom users to create a Quiz directly from Classroom. Instead of creating quizzes in a separate browser, you can create a quiz and assign it directly to your class, or multiple classes.

Locked mode in Quizzes in Google Forms

Better grading in Classroom

Earlier this year, we introduced new grading tools and a comment bank for richer, better feedback. Today, we’re continuing to strengthen the grading process in Classroom with a beta for a new Gradebook to better enable teachers to keep their assignments and grades in one place, and keep this important task more organized. Here are a few things you can do with the new Gradebook:

  • View grades in one place:A new Grades page lets you can view a grid of submissions across assignments to easily enter grades, saving time and providing a holistic picture of a student’s progress.

  • Average grades:In the gradebook grid, you can view average grades per assignment and per student, and see the overall performance in your class. You can share progress with students, so they can track their grades and know where they need to improve.

  • Grade categories & settings:You can select how to calculate grades (weighted average or total points-based), add grade categories to classwork, and choose whether you’d like students to see their average grades. Access these from the Settings page.

Gradebook in Classroom

Sign up for the locked mode and Gradebook betas today

Locked mode is only available on managed Chromebooks, and you’ll need to make sure your Chromebooks are running operating system 68 or higher. We’ll be slowly phasing the rollout for locked mode and Gradebook. If you’re interested in the new features, all teachers and administrators can express interest in either of the betas.


We’d love to hear all of the ways you’re using locked mode in Quizzes and improving your grading experience during the beta period, so please send us feedback using the “send feedback” button.


Source: Google Chrome


Tools that aim to reach all types of learners, wherever they are

Editor’s note: Before joining Google’s Education team, Morgan Weisman was a kindergarten teacher. Today she is sharing how one of her students inspired her to help build products that aim to meet the needs of all types of learners.

The first time I met six-year-old Jeremiah, he clung to his mom’s leg as he peeked into my kindergarten classroom. Soon he came alive as he talked about his favorite superhero: Spiderman. He ran around the colorful classroom, touched everything in sight and chatted aimlessly. However, when he realized my attention had shifted to his mom, he threw himself on the floor in a tantrum. That’s when his mom told me that they suspected he had autism, but were hopeful that the routine of school would help him focus.

This began a year long journey of giving Jeremiah the educational support he needed, while also teaching 24 other students with 24 different learning styles. Seventy-two percent of classrooms have special education students, and teachers have to work to keep them all engaged and invested in school. For me,  I leveraged technology to create differentiated lessons and support each student, especially Jeremiah.

Jeremiah lit up when he had a computer in front of him and headphones on. He could listen, engage and learn without distractions. We had him fitted for glasses, and he learned how to use the screen magnifier to make the words pop on his screen. He learned sight words, numbers and simple addition through songs and videos. Best of all, his social skills developed as he learned to share and take turns with devices.

As I learned what worked for Jeremiah, I started using the same strategies with other students. As my instructional coach used to tell me: “What works for kids with special needs works for everyone. The strategies that work, just work.”

Since joining Google, I’ve seen even more ways that educators use technology to help students succeed. We strive to support teachers, and one of the ways we are doing that is through built-in accessibility features in our products that aim to support the diverse needs of all students.

Morgan's kindergarten classroom on graduation day

My students on kindergarten graduation day... all decked out in gear from my alma mater, our class' theme.

The ABC’s of Chromebook accessibility

Accessibility settings are built in to all Chromebooks, and more are available through Chrome extensions and apps. No need to change settings when you switch devices because they sync to each student by default. Here are a few useful accessibility settings to get you started:

  • Visual aids: Increase the size of browser content by pressing Ctrl + Plus to increase, Ctrl + Minus to decrease, Ctrl + 0 to reset. The rest of the desktop is unaffected. You can enable high contrast mode by pressing Ctrl + Search button + H on the Chromebook keyboard. Adjust your font face and size, and install Chrome extensions for custom color support.

  • Mono Audio:For users who have limited hearing in one ear, there's a Mono Audio option to play the same sound through both speakers. Turn this feature on in Accessibility settings.

  • Spoken feedback: For users who need synthesized speech on occasion, we offer Select-to-speak. When enabled, press and hold the Search key, then click or drag to select content to be read aloud, and press Ctrl to silence. Change the word-by-word highlight color in Select-to-speak settings. We also have the ChromeVox screen reader that reads all text aloud, a free, browser-based screen reader that users can access from any device and built directly for ChromeOS.

  • Acapela text-to-speech voices: Now you can purchase and use more than 100 Acapela voices to read aloud text in 30+ languages on Chromebooks, including a variety of childrens’ voices.

ChromeOS Accessibility Features

The 123’s of G Suite Accessibility

G Suite is a set of tools that help students and teachers collaborate in real time and give personalized feedback. It’s also paperless and accessible from anywhere. Built into our G Suite tools are many accessibility features:

  • Slides: Turn on closed captions in Slides to support students who are deaf, hard-of-hearing or ENL. Simply use  Ctrl + Shift + c in ChromeOS/Windows or⌘ + Shift + c in Mac.

  • Voice typing, editing and formatting: Use the mic and enable the feature to use voice typing in Docs and Slides to write and edit without a keyboard.

  • Visual aids:Enable high contrast themes in Gmail and browsing, and use powerful keyboard shortcuts for those who can’t or don’t want to use a mouse.

  • Collaboration:G Suite works on all different platforms including Windows, Android, iOS devices and even multiple devices at one time. You can all be on different devices and still collaborate in real time.

  • Braille: Use a Braille display to read and edit Docs, Sheets, Slides and Drawings.

  • Screen reader & magnifier:Turn on the features in accessibility settings to zoom in or use the screen reader in Docs, Calendar, Sites, Classroom and even in other browsers.

Braille in Docs Editors

What else is new?

We’re supporting teachers through our own tools as well as strong partnerships with organizations who share our mission. One such organization is Don Johnston, a company that builds tools for people with all types of learning styles and abilities. We’re excited to announce them as a Google for Education Premier Technology Partner, with new integrations using our Drive API, Classroom API and Google single sign-on. Try out their core products in Chrome, Co:Writer, for word prediction, translation, and speech recognition, Snap&Read for screen reading, & their newest product, automatic quiz generator Quizbot with Google Forms. See how one Indiana teacher uses Chromebooks and Don Johnston tools to improve reading independence in her classroom.

Quizbot

Ready to make your teaching more accessible for all learners?

We have many resources to find out what’s new, and how to turn on and use features included in our Chrome browser, Chromebook settings, and G Suite products:

At Google for Education, we're passionate about building tools that make teaching and learning better for everyone. We love hearing stories of how technology is changing students’ lives, so please share ways that you’re using accessibility tools to support all types of learners.

Source: Google Chrome


All Kiwi schools get the license to Chrome

Schools tell us that Chromebooks fill three big needs: they’re easy for students and teachers to use, they’re easy to share and they’re easy to manage. Today, we have some exciting news about the management of Chromebooks that will make the Chrome Education license—our cloud-based device management console—more accessible to schools across New Zealand.  This follows on theannouncementlast year that Chromebooks are the number one device used in New Zealand schools, and is great news for schools and families using Chromebooks or considering investing in them.


Starting on November 1, as part of an agreement with Google and the New Zealand Ministry of Education, all state and state-integrated schools across New Zealand will be able to start claiming Ministry-funded Chrome Education licenses to manage new and existing unmanaged Chromebooks. The Chrome Education license was developed to make device management in schools a breeze, so that teachers and students can focus on what’s most important—teaching and learning. Equipped with the Chrome Education license, schools can utilize essential education features to better support the many ways Chromebooks are used in the classroom.


“This is fantastic news for the Manaiakalani Schools,” says Mrs. Dorothy Burt, Education Program Lead in the Manaiakalani Innovation team, “we have been using Chromebooks since they first became available to New Zealand schools in 2013 and have relied on the devices having the Chrome Education license to ensure the focus remains on learning and teaching.”  

Schools of all sizes can benefit from the Chrome Education license, as Mrs. Burt points out— “the positive impact of the license to schools is experienced in our big schools, with large fleets of Chromebooks to manage, and equally in our very small rural schools where the sole charge teaching principal has more important matters to focus on than the status of learner devices.”
image2

Point England School, part of the Manaiakalani community of learning, have been using the Chrome Education License to manage their Chromebook fleet since 2013.

Most importantly, quality teaching and learning is safely brought to the forefront, underpinned by our commitment to providing the best security measurements protecting teacher and student privacy “With this in place we have the confidence that our move to having young people learning on personal devices in a digital environment is well managed and safe. Expectations of whānau are easily applied across all devices. Teachers can spend their time where it counts—on children and their learning—rather than managing devices.”


The Chrome Education license allows schools to update any number of Chromebooks (once they are enrolled)—without touching a single one. In the simple cloud-based management console, there are over 200 policies that schools can apply to manage their fleet of Chromebooks.  You can learn more about them here, but for now, here are three of them that are sure to be the teacher’s pet!


Give teachers and students confidence that during class, they’re all the on same webpage!

The Education license lets school admins and teachers customize the user experience. This is a handy feature that can automatically load frequently used websites—such as Google Classroom, Khan Academy—on boot-up, as well as adding custom bookmarks, pinning apps and extensions, and blocking distractions.
image1

Lead students right to most used apps and extensions, such as WeVideo, Khan Academy, Pixlr, and the Google Classroom extension

The multi-tasker for school and family use
The “off-hours device policy” feature is particularly helpful for Chromebooks that are used at school and as the family device. For example, school admins can set a weekly schedule so that school settings are in place when students are using Chromebooks in class but, these same settings can be scheduled to turn off after school hours so they don’t apply when a parent might be using the device.


Spark school spirit
You can use the Education license to display digital signage, keeping students and parents informed. It’s simple to set up school-wide displays on computers in the library and monitors around the school to advertise of key school events and moments, like parent/teacher evenings, carnivals and assessment times.


We’re excited to see the growing number of countries like New Zealand partnering with Google to support teachers, schools and families to improve the use of technology in education.


Source: Google Chrome


See how the Night King uses Chromebook

“Winter is coming.”

You’ve heard it countless times. But what you don’t hear much about is the effort that goes into planning the attack on Westeros during the winter—it’s a real operation. There are new recruits to onboard, wargs to avoid, and 700-foot walls of ice to break through. Under these circumstances, a little organization and a Chromebook go a long way.

The Game of Thrones' army of the dead is collecting everything new recruits need to know into a single Google Slides presentation made with Chromebook. Now you can learn a few things about collaboration from the way they work.  

Disappointed with your team’s performance? Tell them exactly where they fell short with a comment in Google Slides. Stuck in another meeting about scheduling an invasion? Start doodling alternate routes in Evernote. Need your headshots to look professional, yet terrifying? Make photo adjustments in Adobe Photoshop Lightroom CC to give yourself that icy edge. You can do it all on Chromebook.

Here are a few especially important slides:

  • New recruit orientation

    Job candidates are on the rise, you can be one of them.

  • Values

    Who are we? What do we stand for?


  • map

    Map it out with diagrams and charts in Slides.

  • Benefits

    There are real benefits to joining the army of the dead.


  • New Recruit Orientation

    The Night King does it all on Chromebook.

The army of the dead had a few thousand years to learn these tips, and now you can discover them all here: chromebook.com/whitewalkers

Source: Google Chrome


When Octoberitis spooks your students, we’re here to help

It's October. Pencils—once sharp and eager to write in August—are starting to dull. Students are gazing out the window, and it's not just because of the falling leaves—this happens every October, when the newness of the new school year has worn off.

To fight this Octoberitis, some educators get students moving by doing a gravity experiment in the stairwell, or role play activities during history. While you’re experimenting in the classroom, we’ll be launching new tools to help you keep the learning spark alive, and make the longer days feel shorter.

And want to know something that’s made our October a bit brighter? We’re excited to announce that over 40 million students and educators are now using Google Classroom, and 30 million are using Chromebooks, on top of 80 million using G Suite for Education globally.

Bring the outside world into the classroom

Back when we learned with just pen and paper, math class and functions could seem dull. But now, augmented reality can add another dimension to your lesson. With the latest update to the Acer Chromebook Tab 10, it became the first ChromeOS device to support ARCore, Google’s platform for building augmented reality experiences. Developers can build AR experiences for classrooms, like GeoGebra, an interactive geometry, algebra, statistics and calculus app. Students can toggle between 2D screens and AR in the 3D app as teachers guide them in exploring math in new ways.
GeoGebra

Using the Acer Chromebook Tab 10, educators can bring everything from a skeleton to the solar system into the classroom with the help of Expeditions AR. With content from partners like Houghton Mifflin Harcourt and Oxford University Press, the world comes to you when you can drop the works of Van Gogh into the middle of your Art History lesson, or a great Kapok tree when studying the rainforest. To unlock the power of AR, ask your IT administrator to enable these Android apps, and make sure your tablets are upgraded to the latest operating system.

To conduct a science experiment, the only equipment you’ll need is a Chromebook. Students can complete more than 40 science labs which map to high school biology, chemistry, and physics standards with Labster Chromebook labs. These online labs allow schools to offer unlimited lab practice time without needing to buy any extra equipment. Not only that, but these labs can also be assigned and graded with the Classroom integration, and teachers can track how students are progressing. To get labs at your school, visit labster.com/chromebooklabs.

Collaborate to reach every learner

You spend hours planning and customizing lessons to engage every learner in your class, but it can be difficult for students to follow along in rigorous and fast paced learning environments. To support students and faculty who are deaf or hard of hearing, we built closed captions in Google Slides (only available on Chrome web browsers), which uses machine learning to turn on automated closed captioning when presenting. Captions are currently available for U.S. English language only, but stay tuned as we explore adding more languages. Learn more about accessibility features in G Suite and ChromeOS.

Slides closed captions

We’ve launched new Docs updates to make writing a paper in MLA format a smoother process. You can already set left and right indentations as well as set hanging indents via a dialog box. Now, students and faculty can also adjust the margins of headers and footers, and use a vertical ruler to adjust placement of table rows and header and footer margins.

Educators can also give feedback to students in Classroom or Course Kit, our free toolkit that allows instructors to use G Suite within their existing LMS. Using the new grading tool, educators can leverage the comment bank to give feedback on Docs and PDFs. Use G Suite for Education but have a different LMS? Request access  to the Course Kit beta today.

Comment bank grading in Classroom

Jamboard - the collaborative whiteboard app - can also help shake things up. We’re bringing the jam to the web, where anyone can create and collaborate on jams from individual Chromebooks, no Jamboard hardware required. And with the new View Only mode, teachers can share jam sessions from their lessons that day while restricting edit access. Have a BYOD policy, or enabling Device Off Hours? Jamboard on the web is an easy solution for collaboration.

If you’re interested in trying out a Jamboard device in your classroom, you can apply for the new Jamboard Learning Space Transformation program. Continental U.S. based G Suite for Education customers can submit a proposal on how you’ll transform your learning space with Jamboard today.

Jamboard web editor

Hopefully these new features and product tips are the antidote you need to the Octoberitis that’s bound to hit your classrooms. If not, you have Halloween to look forward to...

Be sure to follow along on Google for Education’s Twitter and Facebook pages. We love hearing from you, so please share your tips for the best October yet.

Source: Google Chrome


Product updates based on your feedback

We recently made a change to simplify the way Chrome handles sign-in. Now, when you sign into any Google website, you’re also signed into Chrome with the same account. You’ll see your Google Account picture right in the Chrome UI, so you can easily see your sign-in status. When you sign out, either directly from Chrome or from any Google website, you’re completely signed out of your Google Account.

Chrome sign in .png

We want to be clear that this change to sign-in does not mean Chrome sync gets turned on. Users who want data like their browsing history, passwords, and bookmarks available on other devices must take additional action, such as turning on sync.

The new UI reminds users which Google Account is signed in. Importantly, this allows us to better help users who share a single device (for example, a family computer). Over the years, we’ve received feedback from users on shared devices that they were confused about Chrome’s sign-in state. We think these UI changes help prevent users from inadvertently performing searches or navigating to websites that could be saved to a different user’s synced account.

We’ve heard—and appreciate—your feedback. We’re going to make a few updates in the next release of Chrome (Version 70, released mid-October) to better communicate our changes and offer more control over the experience.

  • While we think sign-in consistency will help many of our users, we’re adding a control that allows users to turn off linking web-based sign-in with browser-based sign-in—that way users have more control over their experience. For users that disable this feature, signing into a Google website will not sign them into Chrome.
Chrome settings.png

  • We’re updating our UIs to better communicate a user’s sync state. We want to be clearer about your sign-in state and whether or not you’re syncing data to your Google Account.

Chrome UI.png
  • We’re also going to change the way we handle the clearing of auth cookies. In the current version of Chrome, we keep the Google auth cookies to allow you to stay signed in after cookies are cleared. We will change this behavior that so all cookies are deleted and you will be signed out.

We deeply appreciate all of the passionate users who have engaged with us on this. Chrome is a diverse, worldwide community, and we’re lucky to have users who care as much as you do. Keep the feedback coming.

Source: Google Chrome


Redesigning Chrome: An interview with Chrome’s lead designer

If you use Google Chrome, you may have noticed some changes that started rolling out last week. Yes, indeed, Chrome got a fresh look for its 10th birthday, and today we sat down with Alex Ainslie, Chrome’s lead designer, to go behind the scenes of the biggest redesign since Chrome launched 10 years ago.


So first, what changed in Chrome? Why and why now?


Alex: We’re introducing a major refresh on Chrome across all platforms, which aligns with Google’s new Material Theme. This update involved changing our approaches to shape, color, iconography, and typography. And why right now? You only turn 10 once, so we thought it would be the ideal moment.


For most people (who are non-designers), the modern browser is a simple window to the internet. Is it really that simple?


Alex: A major focus of our work is about finding ways to simplify web browsing. And we think about simplification not so much as a goal, but instead as a strategy for making Chrome more usable. The new, simplified tab strip, for example, makes it faster to find a specific tab when you have many open.

tabs

Goodbye "tablerone." Hello user-friendly icons.

We’ve learned from user research around the world it can be hard to decipher URLs with too many words and characters. So we simplified the text you see in the address bar to make it easier to understand where a URL is taking you.

url

A simple user interface also makes it possible for us to create bold warnings when things aren’t safe: for example, when you visit a dangerous or deceptive site. This is an example of Chrome's values of simplicity and security reinforcing each other.

security

Your team spent the last year working on the new design. What challenges did you face?

Alex: One of our key design challenges is to be a good citizen of all platforms. That means we work hard to ensure Chrome both looks comfortable and behaves in familiar ways on Windows, Mac, Linux, Chrome OS, Android, Daydream and iOS. For example, we respect platform conventions for window controls, button ordering, typography, and more. And we also take care to negotiate the relationship between these platform-specific elements and Google's new Material Theme because we want Chrome to feel at home on all of your devices and to feel recognizably Googley.

The design team is spread across several offices - Mountain View, San Francisco, Los Angeles, London, Munich, and Paris. So in addition to thinking about how to improve Chrome’s UI we also think about how to maintain a healthy design culture across offices and timezones.

Have your team’s design principles changed since Chrome launched 10 years ago?

Alex: We still rely on the early Chrome team mantra, “Content, not chrome,” which is based on the idea of designing the browser UI to make the web content stand out. And our core values remain the same, though they’ve expanded. For example, in the case of speed, we think both about performance improvements to make pages load faster and about how Chrome can help people get things done more quickly. The improved Omnibox—which merges the search and address bar into one—is a great illustration of this.

malibu

What’s your proudest moment from the 8 years you’ve been on the team?

Alex: I appreciate that the Chrome team takes on difficult, long-term projects. For example, helping to move the web to HTTPS has been a multi-year effort. From improving our connection security indicators to marking HTTP sites as “Not secure,” we have plenty of examples of how design can help keep people safe and contribute to change throughout the ecosystem. So it’s not any specific element in Chrome’s UI that I am most proud of, but instead the broader outcomes that impact people out in the world.

Source: Google Chrome


Optimistic dissatisfaction with the status quo of security

This article is a condensed version of a keynote speech Parisa gave at Black Hat Conferenceon July 8, 2018.

As I kid, I used to spend hours at the arcade playing whack-a-mole. With a toy mallet in hand, I’d smash as many plastic moles as possible. But the more moles I whacked, the faster they popped up out of their holes.

I haven’t played this arcade game in years, but there have been times when my career in computer security felt like a reality version of whack-a-mole. Computer security issues are emerging at a quickening pace, and everyone’s energy is spent knocking out the same problems over and over and over.

We have to stop taking a whack-a-mole approach to security. Instead, we need to focus our energy on tackling the root causes of bad security, strategically investing in long-arc defense projects, and building out our coalitions beyond security experts.

Tackle the root cause

As the world becomes more dependent on safe and reliable technology, we can no longer be satisfied with isolated security fixes. Instead, we need to identify and tackle the underlying causes of bad security—whether they’re structural, organizational or technical.

Project Zero, a team that formed at Google in 2014, aims to advance the understanding of offensive security and improve defensive strategies. Over the past four years, the team has reported more than 1,400 vulnerabilities in a variety of targets, including operating systems, browsers, antivirus software, password managers, hardware and other popular software. But what's more impressive than that number is the impact we’re seeing across industry in terms of tackling the root causes of bad security.

In the case of Project Zero, the team recognized that vendor response times for fixing critical security reports varied hugely, and it often didn’t tip in favor of the people using the technology. Unfortunately, software vendors don’t always have incentives aligned that prioritize security. To address that underlying problem, Project Zero introduced a consistent 90-day disclosure policy that removed the historical, time-consuming negotiation between security researchers and vendors.

Initially, this deadline-driven approach was controversial. It caused short-term pain for organizations that needed to make structural changes. But sticking to this approach resulted in  vendors investing more in solving root problems that, for whatever reason, weren’t previously addressed. Since the introduction of the deadline-driven disclosure policy, one large vendor doubled the number of security updates released each year, and another vendor improved response time by 40 percent. When it came to the controversial deadline, 98 percent of the security issues Project Zero reported have been fixed within 90 days, up from 25 percent.

Through all of this, Project Zero worked in the open to advance the public’s understanding of exploitation techniques. Ultimately, the team recognized that one individual security researcher isn’t likely to change the behavior of a large vendor, but a larger public response can. The team sought out opportunities for collaboration with other vendors, and people came together, both inside and outside the walls of Google, to analyze and build defenses against exploits discovered in the wild.

Solving the root problems—especially in today’s distraction-driven environments—isn’t always the fastest or easiest route to take, but it builds a foundation for a more secure future.

Celebrate milestones to make progress on strategic projects

To make real security change, we need to commit to long-arc defense efforts, no matter how complex they may be or how long they take to complete. Maintaining momentum for these projects requires strategically picking milestones, communicating them repeatedly and celebrating progress along the way.

In 2014, the Chrome team set out on a mission to drive the adoption of HTTPS on the open web. We wanted the web to be secure by default, instead of opt-in secure. We also wanted to address confusion in our existing network security indicators; users weren’t perceiving the risk of HTTP connections given our lack of a warning. We knew this project would take many years to complete because of the complexity of the web ecosystem and the associated risk of making big changes to browser security warnings.

It's important to remember that nobody owns the web. It’s an open ecosystem of multiple players, each with different incentives and constraints—so projects of this magnitude require wrangling a lot of moving parts. To avoid creating warning fatigue and confusion about the web, we set strategic milestones over a long period and share them publicly.

My job as a manager was to make sure my team believed change was possible and that they stayed optimistic over the entire course of the project. We shared a comprehensive step-by-step strategy and published the plan on our developer wiki for feedback. Our milestone-based plan started out simple and increasingly upped the pressure over time. Internally, we found fun and inexpensive ways to keep team morale high. We kicked off a brainstorming day with a poetry slam—finger snapping included! We made celebratory HTTPS cakes, pies and cookies. We also had a team chat to share updates, challenges and a lot of GIFs.

https cake

Building momentum externally was equally important. When sites made the switch to the more secure HTTPS, we celebrated with the broader community—usually via Twitter. And we published a transparency report that shed light on top sites and their HTTPS status. Hooray for openness!

Since our official announcement of these changes, HTTPS usage has made incredible progress. The web is ultimately more secure today because of a loose coalition of people who were able to stay committed to seeing a long, ambitious project all the way through. Which brings me to my third point...

Build a coalition

As we proactively invest in ambitious defense projects where the benefits aren’t immediately clear, we need to build a strong coalition of champions and supporters.

In 2012, the Chrome team started its Site Isolation effort, a project that mitigated the risk of cross-site data theft on the web. The project turned out to be the largest architecture change and code refactor in the history of Chrome! This was no small task considering Chrome is 10 years old, has more than 10 million lines of C++ code and has hundreds of engineers committing hundreds of changes each day from around the world. The core Site Isolation team was made up of only around 10 people, so building a strong coalition of support for the project outside of the team was critical for its success.

Originally, we thought this project would take a year to complete. Turns out we were off by more than a factor of five! Estimation mistakes like this tend to put a bullseye on a project’s back from upper management—and with good reason. Luckily, the team regularly articulated progress to me and the reasons why it was more work than first anticipated. They also demonstrated positive impact in terms of overall Chrome code health, which benefited other parts of Chrome. That gave me additional cover to defend the project and communicate its value to senior stakeholders over the years.

Aside from management, the team needed allies from partner teams. If other Chrome team members weren’t motivated to help or didn’t respond quickly to questions, emails and code reviews, then this 10-person project could have dragged on forever. The team kept a positive attitude and went out of their way to help others, even if it didn't relate directly to their own project. Ultimately, they conducted themselves as good citizens to build a community of support—a good lesson for all of us. We might be able to find the problems and technical solutions on our own, but we rely on everyone working on technology to help clear the path to a safer future.

We’ll keep finding complex problems to solve as technology evolves, but I’m optimistic that we can continue to keep people safe. It just requires a little bit of change. We need to take a different approach to computer security that doesn’t feel like playing whack-o-mole. So let’s band together—inside and outside of our organizations—and commit to ambitious projects that solve the root problems. And let’s not forget to celebrate our wins along the way! ?

Source: Google Chrome


As the Chrome dino runs, we caught up with the Googlers who built it

We’ve all been there: you’re trying to load a news article, urgent email, or video when you suddenly lose internet access, either from slow network performance or spotty Wi-Fi. A few years back, the Chrome team realized that downtime doesn’t have to be a downer. "There's nothing fun about getting kicked offline—unless you have a friendly T-Rex to keep you company, that is," explains Chrome UX engineer Edward Jung on the motivation behind Chrome’s offline Dino game. The hidden game shows itself on the new tab page when Chrome users find themselves offline—press the spacebar, and the dino turns into a runner game.

dino gif


The running T-Rex made its debut on Chrome four years ago. On the occasion of Chrome’s 10th birthday this week, we sat down with its creators from the Chrome Design team—Edward, as well as Sebastien Gabriel and Alan Bettes—to learn more about the dinosaur’s journey from the Cretaceous period to the modern browser.

How did you come up with the idea of running T-Rex?

Sebastien: The idea of “an endless runner” as an easter egg within the “you-are-offline” page was born in early 2014. It’s a play on going back to the “prehistoric age” when you had no Wi‑Fi. The cacti and desert setting were part of the first iteration of the “you-are-offline” page, while the visual style is a nod to our tradition of pixel-art style in Chrome’s error illustrations.

bolan

First design iterations of the dino character, code name Project Bolan (if you get that reference, we’ll strike a gong in your honor).

Alan: The only restriction we placed on ourselves was to keep the motion rigid, reminiscent of vintage video games. At the beginning we thought, “What if it did a cute little kick in the beginning like our favorite 90’s hedgehog? What if it roared to signal to people that it was alive?” But in the end, we settled on the basics of any good runner game: run, duck and jump.

dino roar

One of the original ideas: Roaring dino

The new easter egg was submitted in September 2014, under the guise of a page redesign. How did the launch go?

Edward: It was the first time I'd written a game, so I had a lot to figure out—jump physics, collision detection, and cross-platform compatibility. The first iteration played terribly on older Android devices, so I ended up having to rewrite the whole thing. But by December 2014, the game had scaled to all platforms.

We can imagine that the Chrome Dino got quite popular.

Edward: Yes! There are currently 270 million games played every month, both on laptop and mobile. Not surprisingly, most users come from markets with unreliable or expensive mobile data, like India, Brazil, Mexico, or Indonesia.

It also got to the point where we had to give enterprise admins a way to disable the game because school kids—and even adults who were supposed to be working—really got into it.

Sebastien: We also created the chrome://dino URL, where folks can play the game without going offline. The page offers an “arcade mode” so players can train for the best results in a full-window experience.  

dino

The dino has become the Chrome team's internal mascot. This is just a fraction of the Dino swag you might spot on Google's campus.

You currently have a special edition of the game out. Can you tell us more about that?

Alan: Over the years, the game got a few upgrades, like pterodactyls and night mode. The latest one rolled out this week: a special “anniversary edition” for Chrome’s 10th birthday. Look out for cake, balloons, and a fancy birthday hat.

What flavor is the cake?

Alan: Edward is actually an amateur baker, so he decided on a classic vanilla birthday cake. If our dino is going to be eating this millions of times over, it should taste good!

dino bday

The “birthday edition” dino was happy to have a costume change for the 10th anniversary.

How long does it take to beat the game?

Edward: We built it to max out at approximately 17 million years, the same amount of time that the T-rex was alive on Earth… but we feel like your spacebar may not be the same afterwards.

Source: Google Chrome