>
    Strata Copilot
    Discover Risks Posed by GenAI Apps on Prisma Access Browser
    Focus
    Download PDF
    Focus
    1. Home
    2. AI Access Security
    3. Administration
    4. Discover Risks Posed by GenAI Apps
    5. Discover Risks Posed by GenAI Apps on Prisma Access Browser
    Download PDF
    AI Access Security

    Discover Risks Posed by GenAI Apps on Prisma Access Browser

    Table of Contents

    Discover Risks Posed by GenAI Apps on Prisma Access Browser

    Discover the risks posed by GenAI apps on standalone Prisma Access Browser.
    Prisma Access Browser is embedded with AI Access Security to provide comprehensive GenAI app visibility, access control, data, and threat protection to Prisma Access Browser standalone customers. This integration delivers the most comprehensive catalog of GenAI apps with deep last mile controls such as data classification and real-time threat defense. As a Prisma Access Browser standalone security administrator, you can access AI Access Security under the Insights menu to monitor third party AI application usage through Prisma Access Browser with detailed analytics including application metrics, user activity, threats detected, and data transfers.
    1. Log in to Strata Cloud Manager.
    2. Select InsightsAI Access to view the AI Access Security Insights dashboard for standalone Prisma Access Browser.
    3. Click GenAI Apps to view the Application metrics with the Is GenAI:Yes and Category: Access filter applied to view the following metrics:
      • Total GenAI Apps
      • Allowed GenAI Apps
      • Blocked GenAI Apps
    4. Click Unique GenAI Users to view the total GenAI app users granted access to or blocked from accessing GenAI apps. Select the user (from the Total Unique GenAI App Users page) to navigate to the Events page (with the User: <user name> filter applied) to know GenAI apps allowed and blocked for that particular user. Metrics available are:
      • Total GenAI Users
      • Allowed GenAI Users
      • Blocked GenAI Users
    5. Click on the Threats Detected widget to view the total threats detected and blocked.
      This information is available in the Events page (with the Is GenAI:Yes, Category: Malware filter applied). Metrics available are:
      • Total GenAI Threats that display the total threats detected and blocked.
      • Malicious URLs (Filter applied: Category: Malware and Type: Malicious website)
      • Files (Filter applied: Category: Malware and Type: Malicious file identified)
    6. Click on the Data Transfers widget to view the number of incidents of data transfers detected when traffic matches the match criteria in your Enterprise Data Loss Prevention (E-DLP) data profile for your Prisma Access Browser.
      This information is available in the Events page (with the Is GenAI:Yes, Category: DLP filter applied).
      • Total data transfers detected. Filter applied: Is GenAI:Yes, Category: DLP.
      • Data transfers alerted. Filter applied: Is GenAI:Yes, Category: DLP, Action: Allowed.
      • Data transfers blocked. Filter applied: Is GenAI:Yes, Category: DLP, Action: Blocked.
      • Data transfers protected: Action that is allowed but can only be used by the browser. For example, enabling copy and pasting data between sanctioned apps, and blocking it to other apps in the browser or local desktop apps. Filter applied: Is GenAI:Yes, Category: DLP, Action: Allowed Protected.
      • Data transfers encrypted: An encryption action for which only the browser has the decryption key for the specific user and the device it was encrypted by. This allows downloading files and making sure they are allowed to be uploaded (and decrypted) to specific apps, or opened in the browser on offline mode. No other app can open the file, which makes it ideal for files that you don't want to be available on the endpoint, for example, on unmanaged devices. Filter applied: Is GenAI:Yes, Category: DLP, Action: Allowed Encrypted.
      • Just-in-time controls on data transfers: Actions that include warning the user before proceeding, asking the user to provide business justification before proceeding, or triggering an admin approval flow. Those trigger temporary access or bypass to rules during emergency situations or justification and logging are required for compliance reasons. Filter applied: Is GenAI:Yes, Category: DLP, Action: Permission Requested.
      • Data transfers uploaded. Filter applied: Is GenAI:Yes, Category: DLP, Type: File upload.
      • Data transfers in a clipboard activity (Pasting). Filter applied: Is GenAI:Yes, Category: DLP, Type: Clipboard Paste.
      • Data transfers typed at the moment. Filter applied: Is GenAI:Yes, Category: DLP, Type: Sanitizing Content.
      • Data transfers downloaded. Filter applied: Is GenAI:Yes, Category: DLP, Type: File download.
      • Data transfers copied. Filter applied: Is GenAI:Yes, Category: DLP, Type: Clipboard Copy.
      • Data transfers shared using a screenshot. Filter applied: Is GenAI:Yes, Category: DLP, Type: Screen share.
      • Data transfers printed. Filter applied: Is GenAI:Yes, Category: DLP, Type: Print.

    © 2025 Palo Alto Networks, Inc. All rights reserved.