I recently started using Google Chrome on my netbook. It is a great browser, particularly since it lets you see (in picture form) what your previous or regularly viewed websites are. In many respects I find it a better browser than Mozilla Firefox.
What is more, the browser uses a great system of automatic login every time you open Chrome. It works by storing the appropriate cookie in just the same way when you sign on to any other Google app such as Gmail.
However, I have just found out there is a security issue with the automatic single sign on procedure. While it is great for anyone who wants quick access to the internet, the auto login procedure can be easily used by anyone else, it seems. The reason – no master password option is available. This means that anyone using the browser will have to completely disconnect the account afterwards to avoid security problems.
The alternative is to activate the lockdown of your machine, provided, of course, you have password protected this. Oddly, this facility is only available for machines such as netbooks that use the Chrome operating system. However, it would be eminently sensible if the facility was available on other platforms.
What is more, Chrome-based browsers such as Flock and RockMelt offer this, so many analysts are wondering, if they can do it why can’t the original browser?
Google has, in recent months, been caught out with security issues. This flaw seems to be the latest. Other security issues discovered relate to Google Apps such as GDocs and Android apps.
Hopefully, Google will take this new issue seriously.