STIGhubSTIGhub
STIGsSearchCompareAbout

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • VPAT
  • DISA STIG Library
STIGs updated 2 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Google Chrome Current Windows Security Technical Implementation Guide

V-221586

CAT II (Medium)

Deletion of browser history must be disabled.

Rule ID

SV-221586r960879_rule

STIG

Google Chrome Current Windows Security Technical Implementation Guide

Version

V2R11

CCIs

CCI-000169

Discussion

Disabling this function will prevent users from deleting their browsing history, which could be used to identify malicious websites and files that could later be used for anti-virus and Intrusion Detection System (IDS) signatures. Furthermore, preventing users from deleting browsing history could be used to identify abusive web surfing on government systems.

Check Content

Universal method: 
 1. In the omnibox (address bar) type chrome://policy 
 2. If the policy "AllowDeletingBrowserHistory" is not shown or is not set to false, this is a finding.

Windows method:
 1. Start regedit
 2. Navigate to HKLM\Software\Policies\Google\Chrome\
 3. If the "AllowDeletingBrowserHistory" value name does not exist or its value data is not set to "0",  this is a finding.

Fix Text

Windows group policy:
 1. Open the group policy editor tool with gpedit.msc 
 2. Navigate to Policy Path: Computer Configuration\Administrative Templates\Google\Google Chrome\
 Policy Name: Enable deleting browser and download history
 Policy State: Disabled
 Policy Value: N/A