Developed by Microsoft, Microsoft Edge is a cross-platform web browser. This browser was first released for Windows 10 and Xbox One in 2015, Android and iOS in 2017, Mac in 2019, and Linux in October 2020.
It quickly gained popularity and replaced its predecessor, “Internet Explorer 11,” on Windows 8.1, 2002 R2, Server 2016, and Server 2019. In addition, Microsoft published plans to reconstruct the browser as Chromium-based with Blink and V8 engines.
Today, Microsoft announced that they are going to run an experiment in its Edge web browser. This experiment intentionally disables an important performance and optimization feature to allow for more advanced security upgrades in the Edge Super Duper Secure Mode.
Happy to share a little experiment we are trying. https://t.co/70y6Go7JEA I am not sure if it will stick but we will see. Here is how I personally think about the matter 1/?
— Johnathan Norman (@spoofyroot) August 4, 2021
However, JIT support in V8 is complicated. Norman said that JIT-related security issues amounted to 45% of all V8 vulnerabilities in 2019 alone. Besides, more than half of the “in the wild” Chrome exploits depend on JIT-related bugs.
Norman further adds that recent tests carried out by the Microsoft Edge team have revealed that despite its crucial role in speeding up browsers, JIT is not a fundamental feature anymore to Edge’s performance.
The Super Duper Secure Mode disables JIT but at the same time enables two other security features called Control-flow-Enforcement Technology (CET) and Arbitrary Code Guard (ACG) — two features that would normally clash with V8’s JIT execution.
Super Duper Secure Mode is currently labeled as an experiment, and there are no plans to ship it to users just yet. However, this feature is already live and available for testing. Users of Edge Canary, Dev, and Beta can go to the following address and enable this feature in their Edge browsers:
While it is still uncertain if this technology will be launched as a feature, it is still worth a shot, as per Jonathan Norman. Users can also test this technology and leave valuable feedback for the development team at Microsoft Edge Insider.