Ask the Expert

When should new browsers be adopted in an enterprise?

When should a security and operations team feel comfortable supporting an alternative browser?

    Requires Free Membership to View

Many organizations jumped on with Firefox believing that it was vastly more secure then Internet Explorer. These supporters realized later, however, that they lacked the fundamental infrastructure to push out patches to the browser. I think that it is great for your team to look into other technologies, however, you must always be aware of complexity and its effect on your security architecture.

As a rule, complexity is the enemy of security. When more applications are introduced, the number of attack vectors increases, making the application infrastructure as a whole more difficult to secure. If, for example, your organization plans on supporting the Google Chrome browser, you now need to stay current with attacks against Firefox, Internet Explorer, Chrome and all the plug-ins that may possibly be installed in them.

If politically your organization has already made the commitment to multiple browsers, make sure that you have some mechanism or procedure to stay up to date on the risk vectors of all of your third-party applications, not just browsers.

This was first published in April 2009

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: