Skip to content
Tech News
← Back to articles

The Chrome browser is getting a big safety upgrade — if you use Windows

2026-05-28 | original
read original get Chrome Security Extension → more articles
Why This Matters

Google's new Device Bound Session Credentials (DBSC) feature in Chrome for Windows enhances security by binding session cookies to the specific device used for authentication. This makes it significantly more difficult for attackers to hijack sessions using stolen cookies, providing stronger protection for both personal and Workspace users. The rollout, which began in late May, aims to improve overall browser security and reduce the risk of session hijacking in the tech industry and for everyday consumers.

Key Takeaways

Edgar Cervantes / Android Authority

TL;DR Google has announced that Device Bound Session Credentials are now generally available in Chrome for Windows.

The security feature binds a session cookie to the device the user authenticated from, making it harder for malicious actors to exploit stolen cookies.

The feature is rolling out to Workspace customers and users with personal Google accounts.

Recently, Google announced that it is moving Ask Gemini in Google Meet to make it easier to notice. It appears that’s not the only Workspace announcement we’re getting today. Google is also making the Chrome browser a little safer after signing in.

Don’t want to miss the best from Android Authority? Set us as a favorite source in Google Discover to never miss our latest exclusive reports, expert analysis, and much more.

to never miss our latest exclusive reports, expert analysis, and much more. You can also set us as a preferred source in Google Search by clicking the button below.

A little less than a year ago, Google introduced a new security feature for the Chrome browser, specifically for Windows PCs. This feature is called Device Bound Session Credentials (DBSC), which promises to strengthen security after logging in. DBSC was previously only available in beta, but the tech giant is now rolling it out generally to Workspace customers and users with personal Google accounts on Windows.

If you’re wondering what DBSC does, it binds a session cookie to the device the user authenticated from. Session cookies are small files used by websites to remember user information. With this security measure, it ensures that only the originating device can access the active session. It also makes it harder for malicious actors to exploit stolen cookies, even if malware is already present on your device.

Although the announcement was shared today, it appears the rollout started on May 25. This is a gradual rollout that’s expected to be completed within 60 days at the latest. You won’t need to turn the feature on, as it will be enabled by default.

... continue reading

Explore topics: chrome google meet device bound session credentials android authority workspace
Related:
Google Contacts on Wear OS is trying out a smart photos-first redesign
A bizarre Chrome bug is locking some Android tablet users out of their browser
This open source app lets you free your Oura Ring from its subscription
Proton Mail is making it easier to say goodbye to Gmail
Spotify’s new features make it easier to manage and listen to your music

© 2026 GoKawiil

About | Editorial Policy | Contact