Tag Archives: Chrome

Celebrating 10 years of WebM and WebRTC

Originally posted on the Chromium Blog

Ten years ago, Google planted the seeds for two foundational web media technologies, hoping they would provide the roots for a more vibrant internet. Two acquisitions, On2 Technologies and Global IP Solutions, led to a pair of open source projects: the WebM Project, a family of cutting edge video compression technologies (codecs) offered by Google royalty-free, and the WebRTC Project building APIs for real-time voice and video communication on the web.

These initiatives were major technical endeavors, essential infrastructure for enabling the promise of HTML5 with support for video conferencing and streaming. But this was also a philosophical evolution for media as Product Manager Mike Jazayeri noted in his blog post hailing the launch of the WebM Project:
“A key factor in the web’s success is that its core technologies such as HTML, HTTP, TCP/IP, etc. are open and freely implementable.”
As emerging first-class participants in the web experience, media and communication components also had to be free and open.

A decade later, these principles have ensured compression and communication technologies capable of keeping pace with a web ecosystem characterized by exponential growth of media consumption, devices, and demand. Starting from VP8 in 2010, the WebM Project has delivered up to 50% video bitrate savings with VP9 in 2013 and an additional 30% with AV1 in 2018—with adoption by YouTube, Facebook, Netflix, Twitch, and more. Equally importantly, the WebM team co-founded the Alliance for Open Media which has brought the IP of over 40 major tech companies in support of open and free codecs. With Chrome, Edge, Firefox and Safari supporting WebRTC, more than 85% of all installed browsers globally have become a client for real-time communications on the Internet. WebRTC has become a stable standard and it is now the default solution for video calling on the Web. These technologies have succeeded together, as today over 90% of encoded WebRTC video in Chrome uses VP8 or VP9.

The need for these technologies has been highlighted by COVID-19, as people across the globe have found new ways to work, educate, and connect with loved ones via video chat. The compression of open codecs has been essential to keeping services running on limited bandwidth, with over a billion hours of VP9 and AV1 content viewed every day. WebRTC has allowed for an ecosystem of interoperable communications apps to flourish: since the beginning of March 2020, we have seen in Chrome a 13X increase in received video streams via WebRTC.

These successes would not have been possible without all the supporters that make an open source community. Thank you to all the code contributors, testers, bug filers, and corporate partners who helped make this ecosystem a reality. A decade in, Google remains as committed as ever to open media on the web. We look forward to continuing that work with all of you in the next decade and beyond.

By Matt Frost, Product Director Chrome Media and Niklas Blum, Senior Product Manager WebRTC

More intuitive privacy and security controls in Chrome

Keeping you safe and secure online is part of Chrome’s DNA. Along with providing strong default protections, we aim to give you accessible, intuitive, and useful controls so you can make choices that are right for you. So, today we’ve started rolling out new tools and a redesign of Chrome’s privacy and security settings on desktop, to help you control your safety on the web. 

Easy to understand controls

With this redesign, we’ve made the controls even easier to find and understand, with simplified language and visuals:

  • It’s easier to manage cookies. You can choose if and how cookies are used by websites you visit, with options to block third-party cookies in regular or Incognito mode, and to block all cookies on some or all websites. 
  • In Site Settings, we’ve reorganized the controls into two distinct sections to make it easier to find the most sensitive website permissions: access to your location, camera or microphone, and notifications. A new section also highlights the most recent permissions activity.
  • At the top of Chrome settings, you’ll see “You and Google” (previously “People”), where you can find sync controls. These controls put you in charge of what data is shared with Google to store in your Google Account  and made available across all your devices.
  • Because many people regularly delete their browsing history, we’ve moved that control, “Clear browsing data”, to the top of the Privacy & Security section. 
01 Settings_small size.gif

Clearer, more accessible controls to help you manage cookies.

Safety check in Chrome 

With our new safety check in settings, you can quickly confirm the safety of your experience in Chrome.

  • The new tool will tell you if the passwords you’ve asked Chrome to remember have been compromised, and if so, how to fix them. 
  • It will flag if Safe Browsing, Google’s technology to warn before you visit a dangerous site or download a harmful app or extension, is turned off. 
  • The safety check tool also has a new additional way to quickly see if your version of Chrome is up to date, i.e. if it’s updated with the latest security protections. 
  • If malicious extensions are installed, it will tell you how and where to remove them.

02 Safety check.gif

Check if your passwords have been compromised and if so, fix them with Chrome’s help.

Third-party cookie controls in Incognito mode 

In Incognito mode, where people come for a more private browsing experience, Chrome doesn’t save your browsing history, information entered in forms or browser cookies. While we continue to work on our long-term effort to make the web more private and secure with Privacy Sandbox, we want to strengthen the Incognito protections in the meantime. In addition to deleting cookies every time you close the browser window in Incognito, we will also start blocking third-party cookies by default within each Incognito session and include a prominent control on the New Tab Page. You can allow third-party cookies for specific sites by clicking the “eye” icon in the address bar. This feature will gradually roll out, starting on desktop operating systems and on Android.

03 Incognito.gif

Incognito mode blocks third-party cookies within each session.

A new home for your extensions

Starting today you’ll start to see a new puzzle icon for your extensions on your toolbar. It’s a neat way to tidy up your toolbar, and gives you more control over what data extensions can access on sites you visit. With this addition, you’ll still be able to pin your favorite extensions to the toolbar.

04 Extensions.gif

Opening menu displays your extensions and shows you what data they can currently access.

Upgraded security with Enhanced Safe Browsing protection and Secure DNS

We’re bringing you two major security upgrades that you can opt in to. First, Enhanced Safe Browsing gives you more proactive and tailored protections from phishing, malware and other web-based threats. If you turn on Enhanced Safe Browsing, Chrome proactively checks whether pages and downloads are dangerous by sending information about them to Google Safe Browsing.  If you’re signed in to Chrome, then Chrome and other Google apps you use (Gmail, Drive, etc.) will further protect you based on a holistic view of threats you encounter on the web and attacks against your Google Account. Over the next year, we’ll be adding even more protections to this mode including tailored warnings for phishing sites and file downloads, and cross-product alerts.

02 Enhanced Safe Browsing_small size.gif

Enhanced Safe Browsing offers the highest-level of security.

We’re also launching Secure DNS, a feature designed to improve your security and privacy while browsing the web. When you access a website, your browser first needs to determine which server is hosting it, using a step known as a "DNS (Domain Name System) lookup." Chrome's Secure DNS feature uses DNS-over-HTTPS to encrypt this step, thereby helping prevent attackers from observing what sites you visit or sending you to phishing websites. By default, Chrome will automatically upgrade you to DNS-over-HTTPS if your current service provider supports it. You can also configure a different secure DNS provider in the Advanced security section, or disable the feature altogether. 

DoH_Option 2.png

Secure DNS can be configured to use your current ISP's service if available (default), another provider from a list, or a custom provider.

These new updates and features, including our redesigned Privacy and Security settings, will be coming to Chrome on desktop platforms in upcoming weeks. We’ll continue to focus on features that protect your privacy and security as you’re browsing the web with Chrome, in addition to giving you clear and useful choices around managing your data.

More intuitive privacy and security controls in Chrome

Keeping you safe and secure online is part of Chrome’s DNA. Along with providing strong default protections, we aim to give you accessible, intuitive, and useful controls so you can make choices that are right for you. So, today we’ve started rolling out new tools and a redesign of Chrome’s privacy and security settings on desktop, to help you control your safety on the web. 

Easy to understand controls

With this redesign, we’ve made the controls even easier to find and understand, with simplified language and visuals:

  • It’s easier to manage cookies. You can choose if and how cookies are used by websites you visit, with options to block third-party cookies in regular or Incognito mode, and to block all cookies on some or all websites. 
  • In Site Settings, we’ve reorganized the controls into two distinct sections to make it easier to find the most sensitive website permissions: access to your location, camera or microphone, and notifications. A new section also highlights the most recent permissions activity.
  • At the top of Chrome settings, you’ll see “You and Google” (previously “People”), where you can find sync controls. These controls put you in charge of what data is shared with Google to store in your Google Account  and made available across all your devices.
  • Because many people regularly delete their browsing history, we’ve moved that control, “Clear browsing data”, to the top of the Privacy & Security section. 
01 Settings_small size.gif

Clearer, more accessible controls to help you manage cookies.

Safety check in Chrome 

With our new safety check in settings, you can quickly confirm the safety of your experience in Chrome.

  • The new tool will tell you if the passwords you’ve asked Chrome to remember have been compromised, and if so, how to fix them. 
  • It will flag if Safe Browsing, Google’s technology to warn before you visit a dangerous site or download a harmful app or extension, is turned off. 
  • The safety check tool also has a new additional way to quickly see if your version of Chrome is up to date, i.e. if it’s updated with the latest security protections. 
  • If malicious extensions are installed, it will tell you how and where to remove them.

02 Safety check.gif

Check if your passwords have been compromised and if so, fix them with Chrome’s help.

Third-party cookie controls in Incognito mode 

In Incognito mode, where people come for a more private browsing experience, Chrome doesn’t save your browsing history, information entered in forms or browser cookies. While we continue to work on our long-term effort to make the web more private and secure with Privacy Sandbox, we want to strengthen the Incognito protections in the meantime. In addition to deleting cookies every time you close the browser window in Incognito, we will also start blocking third-party cookies by default within each Incognito session and include a prominent control on the New Tab Page. You can allow third-party cookies for specific sites by clicking the “eye” icon in the address bar. This feature will gradually roll out, starting on desktop operating systems and on Android.

03 Incognito.gif

Incognito mode blocks third-party cookies within each session.

A new home for your extensions

Starting today you’ll start to see a new puzzle icon for your extensions on your toolbar. It’s a neat way to tidy up your toolbar, and gives you more control over what data extensions can access on sites you visit. With this addition, you’ll still be able to pin your favorite extensions to the toolbar.

04 Extensions.gif

Opening menu displays your extensions and shows you what data they can currently access.

Upgraded security with Enhanced Safe Browsing protection and Secure DNS

We’re bringing you two major security upgrades that you can opt in to. First, Enhanced Safe Browsing gives you more proactive and tailored protections from phishing, malware and other web-based threats. If you turn on Enhanced Safe Browsing, Chrome proactively checks whether pages and downloads are dangerous by sending information about them to Google Safe Browsing.  If you’re signed in to Chrome, then Chrome and other Google apps you use (Gmail, Drive, etc.) will further protect you based on a holistic view of threats you encounter on the web and attacks against your Google Account. Over the next year, we’ll be adding even more protections to this mode including tailored warnings for phishing sites and file downloads, and cross-product alerts.

02 Enhanced Safe Browsing_small size.gif

Enhanced Safe Browsing offers the highest-level of security.

We’re also launching Secure DNS, a feature designed to improve your security and privacy while browsing the web. When you access a website, your browser first needs to determine which server is hosting it, using a step known as a "DNS (Domain Name System) lookup." Chrome's Secure DNS feature uses DNS-over-HTTPS to encrypt this step, thereby helping prevent attackers from observing what sites you visit or sending you to phishing websites. By default, Chrome will automatically upgrade you to DNS-over-HTTPS if your current service provider supports it. You can also configure a different secure DNS provider in the Advanced security section, or disable the feature altogether. 

DoH_Option 2.png

Secure DNS can be configured to use your current ISP's service if available (default), another provider from a list, or a custom provider.

These new updates and features, including our redesigned Privacy and Security settings, will be coming to Chrome on desktop platforms in upcoming weeks. We’ll continue to focus on features that protect your privacy and security as you’re browsing the web with Chrome, in addition to giving you clear and useful choices around managing your data.

More intuitive privacy and security controls in Chrome

Keeping you safe and secure online is part of Chrome’s DNA. Along with providing strong default protections, we aim to give you accessible, intuitive, and useful controls so you can make choices that are right for you. So, today we’ve started rolling out new tools and a redesign of Chrome’s privacy and security settings on desktop, to help you control your safety on the web. 

Easy to understand controls

With this redesign, we’ve made the controls even easier to find and understand, with simplified language and visuals:

  • It’s easier to manage cookies. You can choose if and how cookies are used by websites you visit, with options to block third-party cookies in regular or Incognito mode, and to block all cookies on some or all websites. 
  • In Site Settings, we’ve reorganized the controls into two distinct sections to make it easier to find the most sensitive website permissions: access to your location, camera or microphone, and notifications. A new section also highlights the most recent permissions activity.
  • At the top of Chrome settings, you’ll see “You and Google” (previously “People”), where you can find sync controls. These controls put you in charge of what data is shared with Google to store in your Google Account  and made available across all your devices.
  • Because many people regularly delete their browsing history, we’ve moved that control, “Clear browsing data”, to the top of the Privacy & Security section. 
01 Settings_small size.gif

Clearer, more accessible controls to help you manage cookies.

Safety check in Chrome 

With our new safety check in settings, you can quickly confirm the safety of your experience in Chrome.

  • The new tool will tell you if the passwords you’ve asked Chrome to remember have been compromised, and if so, how to fix them. 
  • It will flag if Safe Browsing, Google’s technology to warn before you visit a dangerous site or download a harmful app or extension, is turned off. 
  • The safety check tool also has a new additional way to quickly see if your version of Chrome is up to date, i.e. if it’s updated with the latest security protections. 
  • If malicious extensions are installed, it will tell you how and where to remove them.

02 Safety check.gif

Check if your passwords have been compromised and if so, fix them with Chrome’s help.

Third-party cookie controls in Incognito mode 

In Incognito mode, where people come for a more private browsing experience, Chrome doesn’t save your browsing history, information entered in forms or browser cookies. While we continue to work on our long-term effort to make the web more private and secure with Privacy Sandbox, we want to strengthen the Incognito protections in the meantime. In addition to deleting cookies every time you close the browser window in Incognito, we will also start blocking third-party cookies by default within each Incognito session and include a prominent control on the New Tab Page. You can allow third-party cookies for specific sites by clicking the “eye” icon in the address bar. This feature will gradually roll out, starting on desktop operating systems and on Android.

03 Incognito.gif

Incognito mode blocks third-party cookies within each session.

A new home for your extensions

Starting today you’ll start to see a new puzzle icon for your extensions on your toolbar. It’s a neat way to tidy up your toolbar, and gives you more control over what data extensions can access on sites you visit. With this addition, you’ll still be able to pin your favorite extensions to the toolbar.

04 Extensions.gif

Opening menu displays your extensions and shows you what data they can currently access.

Upgraded security with Enhanced Safe Browsing protection and Secure DNS

We’re bringing you two major security upgrades that you can opt in to. First, Enhanced Safe Browsing gives you more proactive and tailored protections from phishing, malware and other web-based threats. If you turn on Enhanced Safe Browsing, Chrome proactively checks whether pages and downloads are dangerous by sending information about them to Google Safe Browsing.  If you’re signed in to Chrome, then Chrome and other Google apps you use (Gmail, Drive, etc.) will further protect you based on a holistic view of threats you encounter on the web and attacks against your Google Account. Over the next year, we’ll be adding even more protections to this mode including tailored warnings for phishing sites and file downloads, and cross-product alerts.

02 Enhanced Safe Browsing_small size.gif

Enhanced Safe Browsing offers the highest-level of security.

We’re also launching Secure DNS, a feature designed to improve your security and privacy while browsing the web. When you access a website, your browser first needs to determine which server is hosting it, using a step known as a "DNS (Domain Name System) lookup." Chrome's Secure DNS feature uses DNS-over-HTTPS to encrypt this step, thereby helping prevent attackers from observing what sites you visit or sending you to phishing websites. By default, Chrome will automatically upgrade you to DNS-over-HTTPS if your current service provider supports it. You can also configure a different secure DNS provider in the Advanced security section, or disable the feature altogether. 

DoH_Option 2.png

Secure DNS can be configured to use your current ISP's service if available (default), another provider from a list, or a custom provider.

These new updates and features, including our redesigned Privacy and Security settings, will be coming to Chrome on desktop platforms in upcoming weeks. We’ll continue to focus on features that protect your privacy and security as you’re browsing the web with Chrome, in addition to giving you clear and useful choices around managing your data.

More intuitive privacy and security controls in Chrome

Keeping you safe and secure online is part of Chrome’s DNA. Along with providing strong default protections, we aim to give you accessible, intuitive, and useful controls so you can make choices that are right for you. So, today we’ve started rolling out new tools and a redesign of Chrome’s privacy and security settings on desktop, to help you control your safety on the web. 

Easy to understand controls

With this redesign, we’ve made the controls even easier to find and understand, with simplified language and visuals:

  • It’s easier to manage cookies. You can choose if and how cookies are used by websites you visit, with options to block third-party cookies in regular or Incognito mode, and to block all cookies on some or all websites. 
  • In Site Settings, we’ve reorganized the controls into two distinct sections to make it easier to find the most sensitive website permissions: access to your location, camera or microphone, and notifications. A new section also highlights the most recent permissions activity.
  • At the top of Chrome settings, you’ll see “You and Google” (previously “People”), where you can find sync controls. These controls put you in charge of what data is shared with Google to store in your Google Account  and made available across all your devices.
  • Because many people regularly delete their browsing history, we’ve moved that control, “Clear browsing data”, to the top of the Privacy & Security section. 
01 Settings_small size.gif

Clearer, more accessible controls to help you manage cookies.

Safety check in Chrome 

With our new safety check in settings, you can quickly confirm the safety of your experience in Chrome.

  • The new tool will tell you if the passwords you’ve asked Chrome to remember have been compromised, and if so, how to fix them. 
  • It will flag if Safe Browsing, Google’s technology to warn before you visit a dangerous site or download a harmful app or extension, is turned off. 
  • The safety check tool also has a new additional way to quickly see if your version of Chrome is up to date, i.e. if it’s updated with the latest security protections. 
  • If malicious extensions are installed, it will tell you how and where to remove them.

02 Safety check.gif

Check if your passwords have been compromised and if so, fix them with Chrome’s help.

Third-party cookie controls in Incognito mode 

In Incognito mode, where people come for a more private browsing experience, Chrome doesn’t save your browsing history, information entered in forms or browser cookies. While we continue to work on our long-term effort to make the web more private and secure with Privacy Sandbox, we want to strengthen the Incognito protections in the meantime. In addition to deleting cookies every time you close the browser window in Incognito, we will also start blocking third-party cookies by default within each Incognito session and include a prominent control on the New Tab Page. You can allow third-party cookies for specific sites by clicking the “eye” icon in the address bar. This feature will gradually roll out, starting on desktop operating systems and on Android.

03 Incognito.gif

Incognito mode blocks third-party cookies within each session.

A new home for your extensions

Starting today you’ll start to see a new puzzle icon for your extensions on your toolbar. It’s a neat way to tidy up your toolbar, and gives you more control over what data extensions can access on sites you visit. With this addition, you’ll still be able to pin your favorite extensions to the toolbar.

04 Extensions.gif

Opening menu displays your extensions and shows you what data they can currently access.

Upgraded security with Enhanced Safe Browsing protection and Secure DNS

We’re bringing you two major security upgrades that you can opt in to. First, Enhanced Safe Browsing gives you more proactive and tailored protections from phishing, malware and other web-based threats. If you turn on Enhanced Safe Browsing, Chrome proactively checks whether pages and downloads are dangerous by sending information about them to Google Safe Browsing.  If you’re signed in to Chrome, then Chrome and other Google apps you use (Gmail, Drive, etc.) will further protect you based on a holistic view of threats you encounter on the web and attacks against your Google Account. Over the next year, we’ll be adding even more protections to this mode including tailored warnings for phishing sites and file downloads, and cross-product alerts.

02 Enhanced Safe Browsing_small size.gif

Enhanced Safe Browsing offers the highest-level of security.

We’re also launching Secure DNS, a feature designed to improve your security and privacy while browsing the web. When you access a website, your browser first needs to determine which server is hosting it, using a step known as a "DNS (Domain Name System) lookup." Chrome's Secure DNS feature uses DNS-over-HTTPS to encrypt this step, thereby helping prevent attackers from observing what sites you visit or sending you to phishing websites. By default, Chrome will automatically upgrade you to DNS-over-HTTPS if your current service provider supports it. You can also configure a different secure DNS provider in the Advanced security section, or disable the feature altogether. 

DoH_Option 2.png

Secure DNS can be configured to use your current ISP's service if available (default), another provider from a list, or a custom provider.

These new updates and features, including our redesigned Privacy and Security settings, will be coming to Chrome on desktop platforms in upcoming weeks. We’ll continue to focus on features that protect your privacy and security as you’re browsing the web with Chrome, in addition to giving you clear and useful choices around managing your data.

Source: Google Chrome


Keep tabs on your tabs in Google Chrome

Coming to Chrome: a new way to use tabs


There are two types of people in the world: tab minimalists who have just a few tabs open at a time and tab collectors who have...significantly more. For minimalists and collectors alike, we’re bringing a new way to organize your tabs to Chrome: tab groups. This feature is available now in Chrome Beta. 


Chrome_Tab-Groups_In-Line-Image-v7.gif

Tab groups in Chrome help you organize your tabs.

Now, with a simple right click, you can group your tabs together and label them with a custom name and color. Once the tabs are grouped together, you can move and reorder them on the tab strip.  

We’ve been testing out tab groups for several months now (as have some of you), and we’re finding new ways to stay organized. Through our own usage and early user research, we’ve found that some people like to group their Chrome tabs by topic. For instance, it helps if you're working on several projects, or looking through multiple shopping and review sites. 

Others have been grouping their tabs by how urgent they are-- “ASAP,” “this week” and “later.” Similarly, tab groups can help keep track of your progress on certain tasks: “haven’t started,” “in progress,” “need to follow up” and “completed.” My pro tip is that you can use an emoji as a group name such as ❤️ for inspiration or 📖 for articles to read. Tab groups are customizable so you can decide how to use them. And just like regular tabs, your groups are saved when you close and reopen Chrome.

Tab-Groups-Organization-Example_v1r1.gif

Group tabs by topic, urgency, progress, etc. It’s up to you how to group them.

Chrome’s stability and performance are important to us, so we’re releasing tab groups slowly in our upcoming version of Chrome, which begins rolling out next week. Tab groups will be available for Chrome on desktop across Chrome OS, Windows, Mac and Linux. If you want to preview tab groups today, it’s available in the latest version of Google Chrome Beta. (Note: if you don’t see tab groups in Chrome Beta, try restarting your browser.)

Source: Google Chrome


Keep tabs on your tabs in Google Chrome

There are two types of people in the world: tab minimalists who have just a few tabs open at a time and tab collectors who have...significantly more. For minimalists and collectors alike, we’re bringing a new way to organize your tabs to Chrome: tab groups. This feature is available now in Chrome Beta. 

Chrome_Tab-Groups_In-Line-Image-v7.gif

Tab groups in Chrome help you organize your tabs.

Now, with a simple right click, you can group your tabs together and label them with a custom name and color. Once the tabs are grouped together, you can move and reorder them on the tab strip.  

We’ve been testing out tab groups for several months now (as have some of you), and we’re finding new ways to stay organized. Through our own usage and early user research, we’ve found that some people like to group their Chrome tabs by topic. For instance, it helps if you're working on several projects, or looking through multiple shopping and review sites. 

Others have been grouping their tabs by how urgent they are-- “ASAP,” “this week” and “later.” Similarly, tab groups can help keep track of your progress on certain tasks: “haven’t started,” “in progress,” “need to follow up” and “completed.” My pro tip is that you can use an emoji as a group name such as ❤️ for inspiration or 📖 for articles to read. Tab groups are customizable so you can decide how to use them. And just like regular tabs, your groups are saved when you close and reopen Chrome.

Tab-Groups-Organization-Example_v1r1.gif

Group tabs by topic, urgency, progress, etc. It’s up to you how to group them.

Chrome’s stability and performance are important to us, so we’re releasing tab groups slowly in our upcoming version of Chrome, which begins rolling out next week. Tab groups will be available for Chrome on desktop across Chrome OS, Windows, Mac and Linux. If you want to preview tab groups today, it’s available in the latest version of Google Chrome Beta. (Note: if you don’t see tab groups in Chrome Beta, try restarting your browser.)

Source: Google Chrome


New malware protections for Advanced Protection users

Advanced Protection safeguards the personal or business Google Accounts of anyone at risk of targeted attacks—like political campaign teams, journalists, activists and business leaders. It’s Google's strongest security for those who need it most, and is available across desktops, laptops, smartphones and tablets. 

One of the many benefits of Advanced Protection is that it constantly evolves to defend against emerging threats, automatically protecting your personal information from potential attackers. Today we're announcing new ways that Advanced Protection is defending you from malware on Android devices. 

Play Protect app scanning is automatically turned on

Google Play Protect is Google's built-in malware protection for Android. It scans and verifies 100 billion apps each day to keep your device, data and apps safe. Backed by Google's machine learning algorithms, it’s constantly evolving to match changing threats. To ensure that people enrolled in our Advanced Protection Program benefit from the added security that Google Play Protect provides, we’re now automatically turning it on for all devices with a Google Account enrolled in Advanced Protection and will require that it remain enabled. 

Limiting apps from outside the Play Store

Advanced Protection is committed to keeping harmful apps off of enrolled users’ devices. All apps on the Google Play Store undergo rigorous testing, but apps outside of Google Play can potentially pose a risk to users’ devices. As an added protection, we’re now blocking the majority of these non-Play apps from being installed on any devices with a Google Account enrolled in Advanced Protection. You can still install non-Play apps through app stores that were pre-installed by the device manufacturer and through Android Debug Bridge. Any apps that you’ve already installed from sources outside of Google Play will not be removed and can still be updated.

G Suite users enrolled in the Advanced Protection Program will not get these new Android  protections for now; however, equivalent protections are available as part of endpoint management. See this help center article for a full list of Android device policies, specifically: “Verify apps,” which prevent users from turning off Google Play Protect, and “Unknown apps,” which prevent users from installing apps from outside the Play Store.

When will these changes roll out?

Starting today, these changes for Android will gradually roll out for Google Accounts that are enrolled in Advanced Protection. We’ll also be rolling out new malware protections for Chrome later this year, building upon the risky download protections we announced in 2019. 

You can learn more about Advanced Protection on Android here, and to enroll in Google's Advanced Protection, visit g.co/advancedprotection.

New malware protections for Advanced Protection users

Advanced Protection safeguards the personal or business Google Accounts of anyone at risk of targeted attacks—like political campaign teams, journalists, activists and business leaders. It’s Google's strongest security for those who need it most, and is available across desktops, laptops, smartphones and tablets. 

One of the many benefits of Advanced Protection is that it constantly evolves to defend against emerging threats, automatically protecting your personal information from potential attackers. Today we're announcing new ways that Advanced Protection is defending you from malware on Android devices. 

Play Protect app scanning is automatically turned on

Google Play Protect is Google's built-in malware protection for Android. It scans and verifies 100 billion apps each day to keep your device, data and apps safe. Backed by Google's machine learning algorithms, it’s constantly evolving to match changing threats. To ensure that people enrolled in our Advanced Protection Program benefit from the added security that Google Play Protect provides, we’re now automatically turning it on for all devices with a Google Account enrolled in Advanced Protection and will require that it remain enabled. 

Limiting apps from outside the Play Store

Advanced Protection is committed to keeping harmful apps off of enrolled users’ devices. All apps on the Google Play Store undergo rigorous testing, but apps outside of Google Play can potentially pose a risk to users’ devices. As an added protection, we’re now blocking the majority of these non-Play apps from being installed on any devices with a Google Account enrolled in Advanced Protection. You can still install non-Play apps through app stores that were pre-installed by the device manufacturer and through Android Debug Bridge. Any apps that you’ve already installed from sources outside of Google Play will not be removed and can still be updated.

G Suite users enrolled in the Advanced Protection Program will not get these new Android  protections for now; however, equivalent protections are available as part of endpoint management. See this help center article for a full list of Android device policies, specifically: “Verify apps,” which prevent users from turning off Google Play Protect, and “Unknown apps,” which prevent users from installing apps from outside the Play Store.

When will these changes roll out?

Starting today, these changes for Android will gradually roll out for Google Accounts that are enrolled in Advanced Protection. We’ll also be rolling out new malware protections for Chrome later this year, building upon the risky download protections we announced in 2019. 

You can learn more about Advanced Protection on Android here, and to enroll in Google's Advanced Protection, visit g.co/advancedprotection.

Source: Google Chrome


Protecting users from insecure downloads in Google Chrome


Today we’re announcing that Chrome will gradually ensure that secure (HTTPS) pages only download secure files. In a series of steps outlined below, we’ll start blocking "mixed content downloads" (non-HTTPS downloads started on secure pages). This move follows a plan we announced last year to start blocking all insecure subresources on secure pages.
Insecurely-downloaded files are a risk to users' security and privacy. For instance, insecurely-downloaded programs can be swapped out for malware by attackers, and eavesdroppers can read users' insecurely-downloaded bank statements. To address these risks, we plan to eventually remove support for insecure downloads in Chrome.
As a first step, we are focusing on insecure downloads started on secure pages. These cases are especially concerning because Chrome currently gives no indication to the user that their privacy and security are at risk.
Starting in Chrome 82 (to be released April 2020), Chrome will gradually start warning on, and later blocking, these mixed content downloads. File types that pose the most risk to users (e.g., executables) will be impacted first, with subsequent releases covering more file types. This gradual rollout is designed to mitigate the worst risks quickly, provide developers an opportunity to update sites, and minimize how many warnings Chrome users have to see.
We plan to roll out restrictions on mixed content downloads on desktop platforms (Windows, macOS, Chrome OS and Linux) first. Our plan for desktop platforms is as follows:

  • In Chrome 81 (released March 2020) and later:
    • Chrome will print a console message warning about all mixed content downloads.
  • In Chrome 82 (released April 2020):
    • Chrome will warn on mixed content downloads of executables (e.g. .exe).
  • In Chrome 83 (released June 2020):
    • Chrome will block mixed content executables
    • Chrome will warn on mixed content archives (.zip) and disk images (.iso).
  • In Chrome 84 (released August 2020):
    • Chrome will block mixed content executables, archives and disk images
    • Chrome will warn on all other mixed content downloads except image, audio, video and text formats.
  • In Chrome 85 (released September 2020):
    • Chrome will warn on mixed content downloads of images, audio, video, and text
    • Chrome will block all other mixed content downloads
  • In Chrome 86 (released October 2020) and beyond, Chrome will block all mixed content downloads.
Example of a potential warning
Chrome will delay the rollout for Android and iOS users by one release, starting warnings in Chrome 83. Mobile platforms have better native protection against malicious files, and this delay will give developers a head-start towards updating their sites before impacting mobile users.
Developers can prevent users from ever seeing a download warning by ensuring that downloads only use HTTPS. In the current version of Chrome Canary, or in Chrome 81 once released, developers can activate a warning on all mixed content downloads for testing by enabling the "Treat risky downloads over insecure connections as active mixed content" flag at chrome://flags/#treat-unsafe-downloads-as-active-content.
Enterprise and education customers can disable blocking on a per-site basis via the existing InsecureContentAllowedForUrls policy by adding a pattern matching the page requesting the download.
In the future, we expect to further restrict insecure downloads in Chrome. We encourage developers to fully migrate to HTTPS to avoid future restrictions and fully protect their users. Developers with questions are welcome to email us at [email protected].