Google Chrome’s Strict Site Isolation feature loads each website in it’s own process to combat the Meltdown and Spectre attacks. Here’s how to enable it.
How to Enable Strict Site Isolation
- On your computer, open Chrome.
- In the address bar at the top, enter
and press Enter.
- Next to “Strict site isolation,” click Enable.
- Click Relaunch now.
If you don’t see “Strict site isolation” update Chrome now!
Even if a site bypasses the same-origin policy, the extra security will help stop the site from stealing your data from another website.
Like most patches for these vulns there are costs for security…
- Memory: Site isolation will increase Chrome’s memory use by approximately 10–20%.
- Printing: Cross-site iframes will be blank. To print the entire page, save the page to your computer. Then, open and print the saved file.
- DevTools: Chrome Developer Tools don’t fully support cross-site iframes with site isolation.