Here is a list of enhancements:

• Increase RSA keysize to 2048 bits for self-signed certificates
• Generate a new WebRTC identity for each connection instead of reusing identities for 30 days
• Generate a new ECDHE keypair for each WebRTC connection instead of reusing them for multiple connections
• Disable using system-provided plugins (i.e. Java, Flash, etc.)
• Disable “Use a web service to help resolve navigation errors”
• Disable autocomplete through prediction service when typing in Omnibox
• Always send “Do-Not-Track” header
• Network/DNS prediction is disabled by default
• Block third-party cookies by default
• Fetch plugins list from iridiumbrowser.de where it will be updated regularly
• Site data (cookies, local storage, etc.) is only kept until exit, by default
• Passwords are not stored by default
• Input form autofill is disabled by default
• For IPv6 probes, use a DNS root server instead of Google
• The default search provider is Qwant
• Load “about:blank” on new tabs instead of the currently set search engine and/or promotions.
• Don’t report Safe Browsing overrides.
• Don’t use autofill download service.
• Disable cookies for safe browsing background requests.
• Disable the battery status API.
• Disable background mode
• Disable EV certificates, so they are shown just like “normal” certificates
• Disable Google cloud printing
• Disable Google hot word detection
• Disable Google experiments status check
• Disable Google translation service
• Disable Google promotion fetching
• Disable Google Cloud Messaging (GCM) status check
• Disable Google Now
• Disable automatic update check
• Disable profile-import on first run
• Network/DNS prediction is disabled by default
• Let user confirm downloading translation dictionaries from Google
• Always prompt for download directory
• Don’t ask to send settings to Google by default on profile reset
• Show all extensions (including internals) in chrome://extensions