Microsoft: We Don’t Recommend Chrome Frame

By | September 25, 2009


Microsoft:According to ArsTechnica, Microsoft does not recommend IE users installing Google Chrome Frame plugin due to security issues.

One of the Microsoft spokesperson said:

“Given the security issues with plugins in general and Google Chrome in particular, Google Chrome Frame running as a plugin has doubled the attach area for malware and malicious scripts. This is not a risk we would recommend our friends and families take.”

Even though additional plugins can increase potential risk, developer Jim Ray has clarified some of the security concerns.

Google Chrome Frame uses BHO (Browser Helper Object) protocol, which was introduced in Internet Explorer 4 (sort of “Firefox Add-ons”). However, back in early days, it was mostly used to install toolbars and malware. Fortunately, the issue was fixed in IE6 SP2 which sandboxed BHO’s that had installed themselves.

In addition, Google integrated its own sandbox to secure Chrome Frame. So just to make it short: it’s not as bad as Microsoft says it is.

[digg-reddit-me]


About (Author Profile)


Vygantas is a former web designer whose projects are used by companies such as AMD, NVIDIA and departed Westood Studios. Being passionate about software, Vygantas began his journalism career back in 2007 when he founded FavBrowser.com. Having said that, he is also an adrenaline junkie who enjoys good books, fitness activities and Forex trading.

Comments (4)

Trackback URL | Comments RSS Feed

  1. Spen B says:

    So, what the Microsoft spokesperson said could be interpreted as meaning that Internet Explorer is secure, while Chrome is full of holes. Funny, considering that Chrome is an open source browser based off of the open source WebKit browser engine. Both WebKit and Chrome are very secure, and have small market shares, making them less appealing for malware developers. Internet Explorer, on the other hand, is used by 2 out of 3 people, and has been criticized for years over its poor security, especially concerning ActiveX. Chrome is used by lots of tech-savy people, while IE is the browser of choice for those who recently learned “how to computer.” Just contrasting the security of IE vs. Chrome in that way eliminates all credibility their side of the argument has.

  2. martinsc says:

    That is just such a typical MS response…
    C’mon, they could have come up with something better!

  3. Ryan J says:

    Even IE is inferior to a plugin… how worse can it get??

  4. Marius says:

    Haha, this post really says not “don’t install Chrome Frame”, but “install real Google Chrome browser”.. :)
    If it’s so unsafe, then people will use other browser.