June 10, 2014

See what your apps & extensions have been up to


Cross-posted from the Chromium Blog

Extensions are a great way to enhance the browsing experience. However, some extensions ask for broad permissions that allow access to sensitive data such as browser cookies or history. Last year, we introduced the Chrome Apps & Extensions Developer Tool, which provides an improved developer experience for debugging apps and extensions. The newest version of the tool, available today, lets power users audit any app or extension and get visibility into the precise actions that it's performing.

Once you’ve installed the Chrome Apps & Extensions Developer Tool, it will start locally auditing your extensions and apps as you use them. For each app or extension, you can see historical activity over the past few days as well as real-time activity by clicking the “Behavior” link. The tool highlights activities that involve your information, such as reading website cookies or modifying web sites, in a privacy section. You can also search for URLs to see if an extension has modified any matching pages. If you’re debugging an app or extension, you can use the “Realtime” tab to watch the stream of API calls as an extension or app runs. This can help you track down glitches or identify unnecessary API calls.

Whether you’re a Chrome power user or a developer testing an extension, the Chrome Apps & Extensions Developer Tool can give you the information you need to understand how apps and extensions affect your browsing.

Posted by Adrienne Porter Felt, Software Engineer and Extension Tinkerer

2 comments:

  1. I loved google extentions.. They are really very usefull and user friendly..

    http://www.chennaireliancedatacard.in

    ReplyDelete
  2. The security of Apps should be of high priority to everyone given the exponential increase of malicious Apps and now in abundance.

    There is an App called CheckMyApps on Google Play which undertakes a forensic analysis of all the Apps on your device and reports on them in three categories:

    1. Privacy.
    2. Financial Losses.
    3. Security.

    Then you, as the device owner, can make a decision about whether you want you continue to have these Apps on your mobile device. In effect you will be determining your own security policy

    For corporates there is also a CheckMyApps solution + an AuditMyApps solution available from Pradeo Security Systems ... a 2014 Gartner "visionary" in the Applications Security Testing Magic Quadrant. These solutions check Apps on devices from both a static and dynamic perspective and have them checked by 24 industry standard virus checkers and then against the companies security policy in almost real-time (2-mins max). Any App on a device will not be allowed to function if it does not meet with the security policy.

    If you want to know more contact ... rle@growyellow.com

    ReplyDelete

You are welcome to contribute comments, but they should be relevant to the conversation. We reserve the right to remove off-topic remarks in the interest of keeping the conversation focused and engaging. Shameless self-promotion is well, shameless, and will get canned.

Note: Only a member of this blog may post a comment.