Updated
Updated · Android Authority · May 28
Google Rolls Out DBSC to Chrome on Windows, Completing 60-Day Security Push
Updated
Updated · Android Authority · May 28

Google Rolls Out DBSC to Chrome on Windows, Completing 60-Day Security Push

4 articles · Updated · Android Authority · May 28
  • Chrome on Windows is now getting Device Bound Session Credentials in general availability for Workspace customers and personal Google accounts, with rollout having started on May 25.
  • DBSC ties a session cookie to the device that authenticated the user, so a stolen cookie cannot easily be reused elsewhere to hijack an active session.
  • Google said the protection is enabled by default and is designed to blunt cookie-theft attacks even when malware is already present on a device.
  • The feature was introduced less than a year ago in beta, and Google expects the gradual rollout to finish within 60 days.
With Google's DBSC now live, which major online services will actually adopt this new security standard?
Does this major security upgrade for Chrome create a false sense of safety for users on other browsers?
How effective is binding a session to a device if malware is already running on that same machine?

Related Stories

Android AuthorityMay 28
The Keyword | Google Product and Technology NewsMay 28
Digital TrendsMay 28
workspaceupdates.googleblog.comMay 28