Cybersecurity experts are working on how to safely use ChatGPT and other generative AI tools such as Google Bard and Jasper. The enhancements to Netskope’s new security solution, announced at Infosecurity Europe, do just that.
Secure Access Service Edge (SASE) provider Netskope enhances its Intelligent Security Service Edge (SSE) platform to enable employees to take advantage of tools like ChatGPT without risking cybersecurity or data protection Added various functions to
In a recent analysis, the company found that ChatGPT adoption is now up 25% month-on-month, with nearly 1 in 100 corporate employees actively using ChatGPT every day, and each user has an average I discovered that I am sending 8 prompts per day.
risk and opportunity
Neil Thacker, CISO EMEA at Netskope, said the growing use of generative AI has significantly increased the data protection requirements of organizations. Information security.
“In addition to data integrity issues resulting from pre-trained models, there is an imminent risk of data leakage when users share sensitive information with GenAI tools,” he explained. “Data contained in requests to GenAI tools may be passed into the hands of third parties with little or no contractual agreement as to how it is treated, and the security of the tools’ data processing may be compromised. Inappropriate levels of trust in the regime.”
Despite these issues, organizations are “very keen to take advantage of the productivity benefits” of generative AI, with only around 10% of companies actively blocking their teams from using ChatGPT. It turned out, Thacker said. However, “we need to manage the risks so that we don’t have to retroactively respond to potential data breaches.”
Netskope has developed an integrated solution product designed for safe and compliant use of generative AI. The Netskope Zero Trust Engine, part of Intelligent SSE, has several key features that make this possible.
- Generated AI Usage Visibility: This tool gives you instant access to specific ChatGPT usage and trends within your organization through a Software as a Service (SaaS) database and advanced analytics dashboard. Additionally, Netskope’s Cloud XD analytics identify access levels and data flow through application accounts, including corporate and personal accounts. There is also a new web category for identifying generated AI domains, allowing teams to configure access control and real-time protection policies.
- Application access control: Organizations can exercise granular access to ChatGPT and other generative AI applications through this solution. In addition, it provides real-time training for users by displaying messages that warn them about potential data leaks and other risks whenever they access a generative AI application.
- Data protection controls: The Zero Trust engine prevents organizations from violating data protection regulations such as the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and the Health Insurance Portability and Accountability Act (HIPAA). It is also designed to allow This includes monitoring, allowing or blocking posts and file uploads to AI chatbots.
Combining tools with people and processes
Thacker stressed that organizations must combine tools with education and policies to maintain safe use of ChatGPT and other generative AI tools. The Netskope platform provides real-time alerts to coaching users.
Organizations should leverage technologies such as Intelligent SSE to fully understand what data is being shared and where. Next, they need to “set policies to put in place appropriate guardrails around activities according to risk.”
On June 14, 2023, the EU passed the “AI Law”, which aims to strictly regulate AI services and reduce the risks posed by AI services. The Final Draft introduced new measures to manage the ‘basic model’.
This is in light of serious data privacy and ethical concerns about using data to develop generative AI tools like ChatGPT.
Image credit: Popel Arseniy / Shutterstock.com
