Skip to Content

Chrome crowned the most secure browser by Accuvant

Internet Explorer takes second place while Firefox comes in third

Not only did Google’s software officially surpass Firefox to assume the No. 2 position in market share last week, but today it was named the most secure of the top three browsers by security firm Accuvant.

“Both Google Chrome and Microsoft Internet Explorer implement state-of-the-art anti-exploitation technologies, but Mozilla Firefox lags behind without JIT hardening,” the company explains in a 100-page study.

Chrome’s plug-in security and sandboxing architectures, meanwhile, are “implemented in a more thorough and comprehensive manner,” making it “the browser that is most secured against attack,” Accuvant says.

The study was commissioned by Google, but its results and the tools and data behind it areĀ available online for inspection.

Internet Explorer at No. 2
Whereas many browser security comparisons focus on metrics such as vulnerability report counts and URL blacklists, Accuvant put its emphasis instead on anti-exploitation techniques.

On five key characteristics, for example – vulnerability patching, safe browsing API, sandboxing, JIT hardening, and plug-in architecture – Chrome offered a “first-rate implementation,” Accuvant found.

Internet Explorer came in second due to deficiencies in its implementation of sandboxing and JIT hardening, while Firefox came in last of the three for failing to implement those two key features altogether.

Faster patches
Chrome was also the most frequently updated of the three browsers, Accuvant found, and it patched vulnerabilities most quickly, with an average patch time of just 53 days compared with Firefox’s 158 and Internet Explorer’s 214.

Accuvant analyzed the three browsers – which together account for more than 93 percent of the market, it says – while running in a Windows 7 environment.

The results of the study largely echo those from this year’s Pwn2Own hack event, from which Chrome emerged unscatched.

Originally published by the Computer World UK. Read the original story here.