What is Key Generation in Google Chrome?

google-chrome windows

I found this option in the privacy settings. What is Key Generation, for forms? There was not even help for this option in the Google online documents.

https://support.google.com/chrome/search?q=key+generation

key generation in chrome

Version 51.0.2704.103 m


From Alexandre Marcondes on Chrome Help Forum (link):

it seems that it may refer to this <keygen> tag on forms feature (which is deprecated by the way):

  • developer.mozilla.org reference on keygen HTML element
  • whatwg.org specs on forms/keygen element
  • w3.org HTML 5 specs on forms/keygen element

The official Chrome docs say

Key generation: Some websites use keys when you fill out forms, including online purchases, for increased security and authentication.

so it probably does refer to <keygen>.


First, some insight may be helpful:

When it mentions the word key it really means its talking about cryptography through (most likely) public key cryptography (also called asymmetric cryptography). Without going to deep, public key cryptography can be used to secure electronic communications over the internet. A form on the internet is something that can be submitted, or otherwise transmitted.

An example of a form being submitted would be when you press the "Place Order" button on Amazon. Posting this answer is considered a form being submitted (inspecting the page source show this!). However, it unlikely that SuperUser uses any kind of cryptography when I submitted this answer, since it doesn't contain sensitive information. Your Amazon order however contains information like a credit card number, your address, and other information that you probably wouldn't want to fall into the wrong hands during transmission.

To answer the question, key generation in forms is allowing the form to generate its own key based off a parameter and some other information likely stored on the server the website is hosted on. The reason Google defaults this option to "Do not allow any sites to use key generation in forms" is likely because of two things: From what I can gather, allowing the website to generate its own key is becoming deprecated, and because it is less secure.

Related

How can I create a remote connection between Mac & Windows computers?
Find out if a PC has a TPM chip installed?
How to easily plot graph, using (preferably) free software?
Can I set up KiTTY to send F7 press instead of bringing up Print dialogue when F7 button is pressed?
UEFI vs non-UEFI options in boot menu
Windows 7 always asks if I want to open toolbar shortcuts (.lnk files)
How do I restore Windows 7 from a System Image to a Boot Camp partition without formatting?
Are there any drawbacks of running Caviar Red (or any other NAS-ready) HDD on your desktop PC?
Why is my .thunderbird folder so big?
Macbook Pro - 15" with i7 processor - Any problems with heat?
Invoke zsh, then *source* another file (while entering interactive mode)
UNIX shell scripting: how to recursively move files up one directory?