Application risk scores help you quickly identify risky GenAI apps, so you can take
action to protect your environment.
| Where Can I Use This? | What Do I Need? |
|---|
- NGFW (Managed by Panorama or Strata Cloud Manager)
- Prisma Access (Managed by Panorama or Strata Cloud Manager)
|
And one of the following:
- AI Access Security license
- CASB-PA license
- CASB-X license
|
To help you quickly identify the GenAI apps that pose the greatest threats to your
organization,
AI Access Security assigns each GenAI app a risk score.
These risk scores enable you to quickly identify risky GenAI apps, so you can take
action to protect your environment. For example, to protect your environment, you
could create a policy rule to block the app. You might also choose to
tag the
app as Unsanctioned.
An app's risk score is between 1 (low risk) and 5 (high risk) and is based on the
SaaS app attributes. Some attributes are
common to all SaaS apps, while a subset of attributes are unique to GenAI apps.
GenAI attributes are attributes such as the data type for user input to
the app, the data type of the output generated by the app, and whether
user-submitted data is used by the app to train its GenAI models. Based on GenAI
attribute values, the risk score calculation determines the GenAI risk.
In addition to the GenAI attributes, the risk score calculation uses the following
types of attributes to determine the app's general SaaS risk.
A GenAI app's final risk score is a combination of the general SaaS risk (calculated
from SaaS attributes) and the GenAI risk (calculated from GenAI attributes). The
risk score calculation gives extra weight to the GenAI risk when determining the
final risk score.
