Google abandons experiment to show simplified URLs in Chrome due to security concerns

578 points

In a nutshell: Replacing long strings of letters, characters and symbols with “simplified domains” may have seemed like a good idea in theory, but in practice, it led to lots of confusion among users and made it easier for hackers to lay traps and carry out social engineering plots. As such, Google has abandoned the experiment altogether.

The project, originally implemented in June 2020, was championed by several folks at Google including Chrome security lead Emily Stark as a way to cut down on long and unintelligible URLs. In practice, however, it apparently proved counter-productive.

A post from Stark on the Chrome bug tracker website dated June 7, 2021, notes that the experiment “didn’t move relevant security measures,” and that they weren’t going to launch it.

READ More:  NVIDIA Reportedly Cutting RTX 2060 Fabrication to Focus on RTX 30-series

As Thurrott correctly highlights, automatically shortening URLs made phishing and other forms of social engineering easier. It also contributed to confusion among some users. So while shorter URLs may have looked more aesthetically pleasing, they were actually doing more harm than good.

This isn’t the first time Google has tinkered with URLs. Experiments to shorten URLs date back to at least 2014 when the company toyed with a feature it called the Origin Chip. That project was eventually dropped, but in 2018, the tech titan worked to remove the ‘http://’ and ‘https://’ prefixes from URLs.

READ More:  Intel updates Linux with support for Sapphire Rapids' in-package HBM2e memory

Image credit 13_Phunkod

Source link

Like it? Share with your friends!

578 points