STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← Back to Google Chrome Current Windows Security Technical Implementation Guide

V-275782

CAT II (Medium)

GenAI local foundational model must be disabled.

Rule ID

SV-275782r1106672_rule

STIG

Google Chrome Current Windows Security Technical Implementation Guide

Version

V2R11

CCIs

CCI-000169

Discussion

Configure how Google Chrome downloads the foundational GenAI model and uses it for inference locally. When the policy is set to Allowed (0) or not set, the model is downloaded automatically, and used for inference. When the policy is set to Disabled (1), the model will not be downloaded. Model downloading can also be disabled by ComponentUpdatesEnabled. 0 = Downloads model automatically 1 = Do not download model

Check Content

Universal method:
1. In the omnibox (address bar) type "chrome:// policy".
2. If "GenAILocalFoundationalModelSettings" is not displayed under the "Policy Name" column or it is not set to "1" under the "Policy Value" column, this is a finding.

Windows method:
1. Start "regedit".
2. Navigate to "HKLM\Software\Policies\Google\Chrome\".
3. If the "GenAILocalFoundationalModelSettings" value name does not exist or its value data is not set to "1", this is a finding.

Fix Text

Windows group policy:
1. Open the group policy editor tool with gpedit.msc.
2. Navigate to Policy Path: Computer Configuration\Administrative Templates\Google\Google Chrome\Generative AI
Policy Name: Settings for GenAI local foundational model
Policy State: Enabled
Policy Value: Do not download model