Bemærk
Adgang til denne side kræver godkendelse. Du kan prøve at logge på eller ændre mapper.
Adgang til denne side kræver godkendelse. Du kan prøve at ændre mapper.
AI amplifies existing security risk and introduces new risks and considerations across identities, data, applications, and user interactions. These risks can be addressed using Zero Trust principles.
Securing AI isn't only about protecting the underlying AI models and services. We also need to ensure that AI system access, use, and governance aligns with Zero Trust principles.
AI pillar guidance focuses on establishing visibility into AI usage, enforcing strong identity and access controls, protecting data across prompts and outputs, securing agent development and runtime environments, and integrating AI signals into security operations.
Workshop implementation
The AI workshop covers the implementation areas summarized in the table.
| Area | Details |
|---|---|
| Map and assess AI risk | Discover and inventory AI agents, applications, and services across the organization. Assess AI risks using centralized security insights, review inventory and prioritize findings, and establish governance, ownership, and acceptable-use policies. Implement continuous monitoring and remediation for evolving AI risks. |
| Register agents | Register AI agents in a centralized registry to maintain visibility and control. Classify and organize agents based on purpose and risk, assign ownership and accountability, and define publishing, certification, and lifecycle |
| Secure AI authentication and access | Enforce identity-based access controls for AI systems and agents. Apply Conditional Access, risk-based and attribute-based policies, and identity governance processes to ensure only authorized users and services can interact with AI resources. |
| Secure AI network access | Control how AI services are accessed across the network. Route traffic through secure access controls, apply filtering and inspection policies for AI interactions, and protect against risks such as prompt injection and unauthorized access paths. |
| Secure AI data access | Protect sensitive data used in AI prompts, grounding, and outputs. Apply classification, labeling, and DLP policies, control access to connected data sources, and monitor for oversharing and data exposure risks in AI interactions. |
| Build agents securely | Secure the development and deployment of AI agents by enforcing authentication, authorization, and data handling standards. Integrate content safety controls, require validation and red teaming, and establish secure publishing and deployment processes. |
| Detect and respond for AI | Monitor AI activity and detect threats such as misuse, anomalies, and prompt-based attacks. Integrate AI signals into security operations, enable investigation and response workflows, and continuously improve detection and response capabilities. |
Next steps
Begin the AI workshop.