Your network security admins gain valuable data into GenAI app usage on your
organization's network using the AI Access Security Insights dashboard.
To enable your network security admins to quickly address gaps and strengthen your
security posture when adopting GenAI apps, Palo Alto Networks introduces AI Access Security Recommendations. These recommendations are clear and
guided calls to action based on your specific organization's GenAI app data analyzed
by Palo Alto Networks.
GenAI App Classification Recommendations—Focused on providing
recommendations based on the GenAI app usage on your network and their app
classification (Sanctioned, Tolerated, or Unsanctioned).
For example, if AI Access Security notices that your organization
allows traffic to Unsanctioned GenAI apps. In this case, AI Access Security provides a recommendation to reclassify these
GenAI apps as Sanctioned or Tolerated.
Best Practices Checks and Policy Recommendations—
AI Access Security uses the
Best Practice Assessment (BPA) service to
analyze your existing
NGFW and
Prisma Access policy
rulebase to offer recommendations to strengthen your security posture to
safely adopt GenAI apps.
For example, if the BPA service discovers that you have a Security policy
rule allowing access to Unsanctioned GenAI apps
Data Loss Prevention Recommendations—To prevent exfiltration of
sensitive data to Sanctioned and Tolerated GenAI apps, AI Access Security analyzes your Security policy rules to
determine if you're forwarding traffic to Enterprise DLP for inline
inspection and for data at rest. This can also include config
recommendations required to forward traffic to Enterprise DLP.
Onboarding and Maximizing AI Access Security—These focus on
providing actionable recommendations to onboard GenAI apps available through
various SaaS marketplaces.
