Tools For Safe Web Browsing
Most people need only the browser, most of the time, for entertainment or work. That means browser security is almost as important as the security of the underlying operating system.
Right now, the most secure Web browser available by default is Google's Chrome. Whether that will change in a year, two or five, however, remains to be seen. Nonetheless, Chrome consistently comes out on top in browser hacking competitions.
That doesn't just happen by accident. Chrome has a strong sandbox system that isolates every tab or extension into its own process. This can lead to an increase in memory usage that many people have complained about; however, it gives a great advantage in both security and processing performance (because each process can be run independently by the CPU, avoiding browser lags).
When each Web app or extension is isolated as much as possible from the others, it dramatically restricts the damage any website can do to your browser or your PC.
WOT is a nice little browser extension that allows people who use it to rate how secure a website is on the Web. It's essentially crowdsourced malware protection. While more technical users may be more careful about what links they click on, most regular Internet users might not, and they could be going to unsafe sites.
WOT attempts to warn users about bad sites and green-light the safe ones. It's a tool that comes in handy, especially on websites such as Google and Twitter, where you may see many links but don't know how trustworthy some of them are.
These days, most browsers come with their own filters for malware websites, but you only get warned when you've already clicked on the link. I like the "prewarning" WOT gives on links as well.
HTTPS adoption has been increasing rapidly, but some sites may still default to plain-text HTTP connections, which are not secure — both from a privacy standpoint (others can intercept your traffic) and a security point of view (you can be attacked more easily through nonsecure connections).
The Electronic Frontier Foundation has built a tool called HTTPS Everywhere that ensures all websites connect over HTTPS as long as those websites support HTTPS (but doesn't redirect most users to it).
HTTPS Everywhere also acts as some sort of user-centric alternative to the HSTS (HTTP Strict Transport Security) protocol, which mandates that the connection is done over HTTPS. However, most HTTPS websites don't "strictly" enforce their HTTPS connections, which could make some man-in-the-middle attacks easier by downgrading the connection to HTTP.
The extension also recently received a feature that could be very useful: the option to connect only to HTTPS sites and block all requests that happen over HTTP (such as third-party trackers that can work over plain HTTP even on top of an HTTPS site, therefore weakening its overall security).
However, unless you visit only a handful of HTTPS websites every day, then enabling this might be a little too inconvenient for the casual Web user for now. When most popular websites are HTTPS, then users could fully secure themselves by enabling that feature as well.
Enable OpenDNS by opening the Control Panel, then go to Network and Sharing Center and select your Wi-Fi/Ethernet connection. Choose Properties and InternetProtocol Version 4 and use the following DNS addresses: 188.8.131.52 / 184.108.40.206
OpenDNS' "Enhanced DNS" free service is another great security tool you can use to protect against websites that are infected with malware either intentionally or by getting hacked by malicious attackers. All you have to do is replace the DNS addresses with the ones provided by OpenDNS, and you'll benefit from an extra layer of security.
The aforementioned tools are not a 100-percent foolproof solution for Windows security, but together, they offer a reasonably high level of security for users who don't want to struggle to learn how to use more advanced and complicated tools. They're also completely free.
Most of the aforementioned tools require only installation or an initial setup. After that, they "invisibly" protect users behind the scenes, which is just about ideal for the vast majority of Windows PC owners.
Lucian Armasu is a Contributing Writer for Tom's Hardware, covering News.