Stories
Slash Boxes
Comments

SoylentNews is people

SoylentNews is powered by your submissions, so send in your scoop. Only 15 submissions in the queue.

Submission Preview

Link to Story

Is Microsoft Edge Any More Secure Than the IE it's Supposed to Replace?

Accepted submission by fliptop at 2015-12-16 14:10:22
Software

While both Betteridge's Law and common sense say, "No," Zack Whittaker at ZDNet takes a closer look: [zdnet.com]

An analysis of the last five-months' worth of monthly software updates shows that Edge had 25 vulnerabilities shared with versions of Internet Explorer, which had a total of 100 vulnerabilities.

Earlier this month on its scheduled Patch Tuesday update offering, Microsoft released MS15-124 [microsoft.com], a cumulative update for Internet Explorer, and MS15-125 [microsoft.com], a near-identical patch for Edge. Of the 15 flaws patched in Internet Explorer, 11 of those were also patched in Edge.

According to a Microsoft blog post earlier this year [windows.com], the software giant's newest browser, an exclusive for Windows 10, is said to have been designed to "defend users from increasingly sophisticated and prevalent attacks."

In doing that, Edge scrapped older, insecure, or flawed plugins or frameworks, like ActiveX or Browser Helper Objects. That already helped to cut a number of possible drive-by attacks traditionally used by attackers. EdgeHTML, which powers Edge's rendering engine, is a fork of Trident, which still powers Internet Explorer.

[...]Older versions of Internet Explorer will be retired by mid-January, giving millions of users about a month to upgrade to Internet Explorer 11, or to Edge on Windows 10.


Original Submission