It would be good to have more visibility into the internal state of the third party blocking subsystem, exposed to users and also potentially enterprise admins.
At a minimum, I think we should present (potentially via a webUI page):
- Current state of the blocking subsystem i.e. is it engaged or not, is it disabled by enterprise policy?
- List of the modules that are injected that are not signed by microsoft and might therefore be blocked, clearly indicated.
- List of whether these modules "are able to be tied to existing installed software." since that appears to be a trigger for further behavior.
- Whether they are actively being blocked, or whether they are not.
- Modules that attempted to load but were blocked.
- Modules that were allowed to load.
Also, I think we need more information presented in product about the plans in future milestones, something in developer tools or chrome://conflicts that says "these modules will be blocked in upcoming release <date> or <milestone>"
Comment 1 by chrisha@chromium.org
, May 30 2018