Browser Security: IE vs. Safari vs. Firefox: Page 2
As I said above, the first thing to take control of in securing a browser is active content. None of the three browsers is great at that out of the box. Firefox and Safari are downright horrible at it. So, I generally turn to security add-ons for this sort of thing. My favorite such add-on is NoScript, a free plug-in for the Mozilla family of browsers, including Firefox.
Qualitative score: Firefox gets a B, Safari a D, and IE a D.
Integration with operating system:
Okay, this category is not directly security-related, but it is nevertheless important in selecting a browser. Although Safari has been losing pretty pathetically in my other categories here, its integration with OS X is a work of genius. (Not so much for the Windows version of Safari )
For example, it fully integrates with OS Xs keychains, proxy settings, as well as other operating system features. Thus, if you use X.509 certificates for email authentication, you only need to maintain one repository of them. Similarly, if your network uses a corporate proxy for connecting users to the Internet, its all configured in one location.
Firefox, by comparison, chose to do all of that internally and ignore the underlying operating systems APIspresumably done in the name of ease of porting to numerous operating systems. This added complexity simply must have long-term functional as well as security ramifications, and remains my biggest complaint about using Firefox on OS X.
Qualitative score: Firefox gets a D, Safari an A, and IE an A.
This list of topics is, I believe, extremely important to the overall security of a browsing environment. I should also say that keeping your browser and its plug-ins up to date is absolutely vital. Most browsers are pretty darned good with that these days, even if they dont use the operating systems own software updating mechanism.
Overall, I feel safest using Firefox paired with NoScript, but I keep Safari and Pith Helmet around for some sites that either wont run on Firefox, or for those times when I absolutely need the browser to use an operating systems functionality directly. I also even occasionally will run IE inside a Parallels virtual machine, but when I do that, I immediately revert the virtual machine back to a pre-browse snapshot of itself, but thats another topic for another time and column.
I firmly believe that Firefox gives you the most secure browser for the least effort.