Enable Application Bound Encryption

Information

Enabling this policy or leaving it unset binds the encryption keys used for local data storage to Microsoft Edge whenever possible.

Disabling this policy has a detrimental effect on Microsoft Edge's security because unknown and potentially hostile apps can retrieve the encryption keys used to secure data.

Only turn off this policy if there are compatibility issues such as scenarios where other applications need legitimate access to Microsoft Edge's data. Encrypted user data is expected to be fully portable between different computers or the integrity and location of Microsoft Edge's executable files isnt consistent.

Solution

Policy Path: Microsoft Edge
Policy Setting Name: Enable Application Bound Encryption

See Also

https://techcommunity.microsoft.com/blog/microsoft-security-baselines/security-review-for-microsoft-edge-version-131/4298314