DTBC-0067 - Collection of WebRTC event logs must be disabled.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

If the policy is set to 'true', Google Chrome is allowed to collect WebRTC event logs from Google services (e.g., Google Meet), and upload those logs to Google.
If the policy is set to 'false', or is unset, Google Chrome may not collect nor upload such logs.
These logs contain diagnostic information helpful when debugging issues with audio or video calls in Chrome, such as the time and size of sent and received RTP packets, feedback about congestion on the network, and metadata about time and quality of audio and video frames. These logs do not contain audio or video contents from the call.
This data collection by Chrome can only be triggered by Google's web services, such as Google Hangouts or Google Meet.

Solution

Windows group policy:
1. Open the group policy editor tool with gpedit.msc
2. Navigate to Policy Path: Computer Configuration\Administrative Templates\Google\Google Chrome\
Policy Name: Allow collection of WebRTC event logs from Google services
Policy State: Disabled
Policy Value: NA

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Google_Chrome_V2R8_STIG.zip

Item Details

References: CAT|II, CCI|CCI-001166, Rule-ID|SV-221598r615937_rule, STIG-ID|DTBC-0067, STIG-Legacy|SV-101305, STIG-Legacy|V-91205, Vuln-ID|V-221598

Plugin: Windows

Control ID: 1a4a25abc2c1a9dbfadc464a5f2f1c9911661a00ed33ded454606695778921de