How to configure your Chromebook for ultimate security

Chrome OS is already tops at security, but with a few extra tweaks you can ensure the gates are even more secure.

A Chromebook is already an ultra-secure computer straight out of the box. Since it doesn’t run a traditional operating system and takes advantage of various Google-powered security measures, Chrome OS is well-guarded against all the miscreants lurking out there on the Web.

But you can always do more, particularly if you want to minimize traces of your Internet wanderings, or prevent your every online action from contributing to an advertising profile.

You may share a Chromebook with others or desire a setup that’s impervious to the latest security threats. Perhaps it’s time for a little de-Googling in your life, as the Mountain View giant can collect a lot of information about you.

Whatever your reasons, here are some ways to fortify your Chromebook’s security structure.

Chrome’s default security

Chrome OS is essentially the Chrome browser, which already benefits from Google’s ongoing security efforts to identify malicious websites and sandbox each browser tab so one site can’t take down your whole computer. Furthermore, you can sign out of your Google account and wipe the entire Chromebook with ease, so you don’t have to be concerned about files lingering around after you’ve sold or gifted your device to someone else.

Chrome will throw up a warning sign if it detects something’s awry with a website’s security.

Leave no trace

You’ve probably had the experience of checking out, say, a new tent on Amazon, and then suddenly ads for that sleeping shelter appearing on every site you visit.

You can stop the madness. One place to start is Privacy Badger, an extension from the Electronic Frontier Foundation. The extension blocks trackers, though you’re able to accept some cookies or whitelist specific sites.

chrome cookies
Chrome will give you the goods on cookies and other permissions requested by each site you visit.

Another helpful extension from the EFF privacy advocates is HTTPS Everywhere. Once you install this to Chrome, the browser will force a secure connection to all the sites you visit on the Web. Even though Google and others have made a huge push to make HTTPS the default connection, nonsecure sites are still out there. 

You may experience some weirdness with certain websites since the extension is trying to force an encrypted connection on sites that aren’t coded for this by default. In such circumstances, a workaround is to temporarily disable the extension for a particular site.

Chrome can assist here. When you click the paper icon in Chrome’s address bar, you’ll get details about the number of cookies the site is planting in your browser. It’s an insightful metric when visiting various websites.

When it comes time to sell your Chromebook or pass it down to a needy friend or family member, be sure to wipe it of all identifying information. It’s a straightforward process: Sign out of your Chromebook, then hold Ctrl + Alt + Shift + R. Then click Restart and Reset.

Going with a little less Google

Maybe you don’t want Google itself to follow your every move online, sharing your searches with Google’s other services (which can sometimes provide interesting results). One solution is to switch your default search provider to DuckDuckGo. It’s a privacy-focused search engine that doesn’t track your search history.


DuckDuckGo is a search engine focused on privacy. 

To do this, go to DuckDuckGo, right-click in the address bar, and select Edit Search Engines. Then from the list of search engines, click the Make default button next to DuckDuckGo. Now when you type a search query in Chrome, it will be powered by the quacky search engine that keeps your secrets safe.

You can also maintain privacy by signing in to Chrome’s Guest Mode, which is totally detached from your personal profile, settings, history, etc. All you have to do is sign out of your current session and get going as a guest. 

Going darker

You can further minimize Google’s hold on your personal information by turning off autofill and automatic sync in Chrome. By doing this, Google won’t automatically try to put in your name, address, email, and other details wherever you go to fill out an online form. While the autofill feature is definitely convenient, you may not want to have this always at the ready. Killing off sync means your search history and other preferences will remain local to that machine.

Go to Settings > Advanced Sync Settings and uncheck the Autofill box. If you like the convenience of synced data and passwords, but just don’t want to give it to Google, consider a password manager.

sync settings

Manage your sync settings to keep tabs on your past Internet usage.

If you really want to go deep into the privacy woods, you can switch up your DNS server to a provider that won’t log or retain these lookups. By default, your administrator or Internet service provider may retain this information. 

To change the DNS settings on your Chromebook, first head to the the Chrome menu, choose Settings > Internet Connection and then click on your network.

Then head to the Network tab and choose Custom name servers. You can enter in the following details from DNS Watch, which advocates for data privacy. Enter for server 1, and for server 2. Choose Disconnect. Then, select the network again and choose Connect. This will change the switchboard from sending your traffic through your ISP.

While your Chromebook is already about as secure a computer as you can get, it can’t hurt to go the extra mile. There are some additional steps you can take for extra security, such as using a VPN. It can be a scary world online, but with a few strategic moves, your Chromebook will be impervious to the wild woods of the Internet.

Join the CSO newsletter!

Error: Please check your email address.

Tags Chromebookschrome

More about AdvancedCustomEFFElectronic Frontier FoundationGoogleMountain View

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Derek Walter

Latest Videos

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

  • 150x50

    IDG Live Webinar:The right collaboration strategy will help your business take flight

    Speakers - Mike Harris, Engineering Services Manager, Jetstar - Christopher Johnson, IT Director APAC, 20th Century Fox - Brent Maxwell, Director of Information Systems, THE ICONIC - IDG MC/Moderator Anthony Caruana

    Play Video

More videos

Blog Posts