Microsoft tests Super-Duper Secure Mode for Edge

Microsoft's Edge security researchers are testing how removing the JIT compilation from the V* processing pipeline would affect security and performance. Edge Insider testers can check out SDSM now.

microsoft-edge.jpg

(Image: Shutterstock)

Microsoft's Edge Vulnerability Research (VR) team is testing a new feature they've christened, "Super Duper Secure Mode" (SDSM). Super-Duper Secure Mode is all about making Edge more secure without negatively impacting performance.

see also

The best browsers for privacy in 2021

If you’re like most people, you’re probably using Google Chrome as your default browser. But privacy is another matter for the online ad giant.

Read More

SDSM works by removing Just-In-Time compilation from the V8 processing pipeline, which will reduce the attack surface that can be used to hack into Edge's systems, as Bleeping Computer (where I first saw the SDSM information) explains. In addition to disabling the JIT, SDSM enables "new security mitigations" to make Edge a more secure browser.

"JavaScript plays a key role in any browser story. JITs exist for a reason, and that is to optimize JavaScript performance," the Microsoft browser researchers noted in their August 4 blog post about SDSM. However, so far, the researchers said they don't see much of a change in performance with JIT disabled; most of their tests remained unchanged.

By disabling the JIT, roughly half of the V8 bugs that must be fixed would be removed. This would mean less frequent security updates and fewer emergency patches for users, the researchers noted.

SDSM is still considered to be in the experimental stage. Still, Edge preview testers -- in the Canary, Dev and Beta rings -- can enable it now with a flag by going to edge://flags/#edge-enable-super-duper-secure-mode and turning on the new feature.