Chromebooks will become a better place to take a video call or audio huddle soon, as Google is giving all users the ability to universally control access to their video cameras and microphones.
As part of a wider announcement of business data and security improvements, Tony Ureche, head of security, identity, and privacy for ChromeOS, writes that Chromebooks will get a space in Settings for toggling camera and microphone access. If an app tries to access either device upon launching or after a button tap, you’ll get a notice saying, “Your mic is muted by your system settings,” with a prompt to click the button to learn more (at least in Google Meet). The setting is coming “later this year.”
Having a default-off option for Chromebooks adds security to an already fairly secure platform, both by obscurity and design. It’s also helpful for users, as it’s a good idea to have to affirmatively enable a camera every time it wants to turn on rather than remembering whether or not you previously gave permission to Zoom, Meet, Slack, Skype, Teams, GoToMeeting, WebEx, Discord, or other apps.
In some ways, it puts ChromeOS ahead of Windows and macOS, as both rely on individual app permissions without a universal toggle. It’s not a physical kill switch, but it’s as good as it might get without screen-endangering webcam covers, washi tape, or simply never joining meetings. It will, however, likely lead to more than a few “I can hear you, can you hear me?” moments.
Elsewhere in Google’s announcement, ChromeOS crows a bit about how its system meshes with a new set of guidelines issued by the Cybersecurity and Infrastructure Security Agency, National Security Agency, and FBI, “Secure by Design, Secure by Default.” A verified boot process, the executable design, and the nature of Chromebooks as simple gateways to data that is mostly stashed on web servers keep Chrome secure, according to Google. Managed Chromebooks have Data Controls that lock down access to files and data, including copy/paste and screenshot controls. And there’s Google’s prime statistic, that ChromeOS devices have had “zero reported ransomware attacks.”
https://arstechnica.com/?p=1934169