en-US

Enable Application Bound Encryption

Supported on: Microsoft Windows 7 or later

Registry

HKLM Software\Policies\Google\Chrome
HKCU Software\Policies\Google\Chrome

Value name: ApplicationBoundEncryptionEnabled

Enabled: ApplicationBoundEncryptionEnabled = 1

Disabled: ApplicationBoundEncryptionEnabled = 0

Description

Setting the policy to Enabled or leaving it unset binds encryption keys used for local data storage to Google Chrome whenever that is possible. Setting the policy to Disabled has a detrimental effect on Google Chrome's security as unknown and potentially hostile apps can retrieve encryption keys used to secure data. Only turn off the policy if there are compatibility issues, such as other applications that need legitimate access to Google Chrome's data, encrypted user data is expected to be fully portable between different computers or the integrity and location of Google Chrome's executable files is not consistent.