DTBC-0056 - Chrome must be configured to allow only TLS.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

If this policy is not configured then Google Chrome uses a default minimum version, which is TLS 1.0. Otherwise, it may be set to one of the following values: 'tls1', 'tls1.1' or 'tls1.2'.
When set, Google Chrome will not use SSL/TLS versions less than the specified version. An unrecognized value will be ignored.
'tls1' = TLS 1.0
'tls1.1' = TLS 1.1
'tls1.2' = TLS 1.2

Solution

Windows group policy:
1. Open the 'group policy editor' tool with gpedit.msc.
2. Navigate to Policy Path: Computer Configuration\Administrative Templates\Google\Google Chrome\
Policy Name: Minimum SSL version enabled
Policy State: Enabled
Policy Value: TLS 1.2

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Google_Chrome_V2R8_STIG.zip

Item Details

References: CAT|I, CCI|CCI-002450, Rule-ID|SV-234701r850369_rule, STIG-ID|DTBC-0056, STIG-Legacy|V-81583, Vuln-ID|V-234701

Plugin: Windows

Control ID: 6de83e0b65ab01436218b68f44ade9340c1953afe6a18a1e4f0a968b11373b35