Windows 7 / Getting Started

Understanding Zones

To provide optimal security for untrusted Web sites while allowing elevated privileges for trusted Web sites, Internet Explorer provides multiple security zones:

  • Internet All Web sites that are not listed in the trusted or restricted zones. Sites in this zone are restricted from viewing private information on your computer (including cookies or temporary files from other Web sites) and cannot make permanent changes to your computer.
  • Local Intranet Web sites on your intranet. Internet Explorer can detect automatically whether a Web site is on your intranet. Additionally, you can add Web sites manually to this zone.
  • Trusted Sites Web sites that administrators have added to the Trusted Sites list because they require elevated privileges. Trusted Sites do not use Protected Mode, which could introduce security weaknesses. Therefore, you need to select the Web sites added to the Trusted Sites zone carefully. You don't need to add all sites you trust to this zone; instead, you should add only sites that you trust and that cannot work properly in the Internet or intranet zones. By default, this zone is empty.
  • Restricted Sites Web sites that might be malicious and should be restricted from performing any potentially dangerous actions. You need to use this zone only if you plan to visit a potentially malicious Web site and you need to minimize the risk of a security compromise. By default, this zone is empty.

Note When moving from a trusted site to an untrusted site or vice versa, Internet Explorer warns the user and opens a new window. This reduces the risk of users accidentally trusting a malicious site.

[Previous] [Contents] [Next]

In this tutorial:

  1. Managing Windows Internet Explorer
  2. Internet Explorer 8 Improvements
  3. InPrivate Browsing
  4. InPrivate Filtering
  5. Compatibility View
  6. SmartScreen
  7. Domain Highlighting
  8. Tab Isolation
  9. Accelerators
  10. Improvements Previously Introduced in Internet Explorer 7
  11. User Interface Changes
  12. Tabbed Browsing
  13. Search Bar
  14. How to Create a Web Link to Add a Custom Search Provider
  15. How to Configure Custom Search Providers Using the Registry
  16. How to Configure Custom Search Providers Using Group Policy
  17. RSS Feeds
  18. Improved Standards Support
  19. Expanded Group Policy Settings
  20. Defending Against Malware
  21. How Protected Mode Improves Security
  22. How the Protected Mode Compatibility Layer Works
  23. How to Solve Protected Mode Incompatibilities
  24. URL-Handling Protection
  25. Address Bar Visibility
  26. Cross-Domain Scripting Attack Protection
  27. Controlling Browser Add-ons
  28. Add -on Manager Improvements
  29. Protecting Against Data Theft
  30. Security Status Bar
  31. How the Smart Screen Filter Works
  32. How to Configure Smart Screen Options
  33. Deleting Browsing History
  34. Blocking IDN Spoofing
  35. Security Zones
  36. Understanding Zones
  37. Configuring Zones on the Local Computer
  38. Configuring Zones Using Group Policy
  39. Network Protocol Lockdown
  40. Managing Internet Explorer Using Group Policy
  41. Group Policy Settings for Internet Explorer 7 and Internet Explorer 8
  42. New Group Policy Settings for Internet Explorer 8
  43. Using the Internet Explorer Administration Kit
  44. Troubleshooting Internet Explorer Problems
  45. Internet Explorer Does Not Start
  46. An Add-on Does Not Work Properly
  47. Some Web Pages Do Not Display Properly
  48. Preventing Unwanted Toolbars
  49. The Home Page or Other Settings Have Changed