Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Administration Guide

    Home FortiGate / FortiOS 7.6.5 Administration Guide
    7.6.5
    7.6.6
    7.6.5
    7.6.4
    7.6.3
    7.6.2
    7.6.1
    7.6.0
    7.4.11
    7.4.10
    7.4.9
    7.4.8
    7.4.7
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.13
    7.2.12
    7.2.11
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.19
    7.0.18
    7.0.17
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.0

    AI protection

    AI protection

    Artificial Intelligence (AI) is rapidly transforming business operations, cybersecurity, and digital infrastructure. Among its most prominent forms are Large Language Models (LLMs), such as GPT, which are a type of Generative AI (GenAI) widely used in chatbot applications, such as ChatGPT, DeepSeek, and others. As these chatbots become more common in corporate environments, new risks emerge. AI applications, including but not limited to chatbots, can inadvertently expose sensitive data. For instance, an employee might paste a confidential email into a chatbot to generate a customized reply, potentially exposing sensitive information.

    Securing GenAI has become critical in this evolving landscape. FortiGate offers several methods to restrict or block access to GenAI tools, helping prevent data leaks and protect company information.

    The following table outlines the techniques and highlights scenarios where each method may be most effective.

    Technique

    Description

    Web filter

    Using a web filter profile with the FortiGuard Artificial Intelligence Technology category enables users to monitor and block access to sites in this category by matching the requested URL against FortiGuard’s classification. See Protecting GenAI access using web filter for more information.

    Application control

    Using an application control profile with the Generative AI category enables users to monitor and block access to sites in this category by matching traffic patterns against FortiGuard’s Generative AI signatures. This approach goes beyond URL matching by employing deep packet inspection to identify and control application-level traffic, offering enhanced visibility and insight into AI-related activities.

    See Protecting GenAI access using application control for more information.

    Data Loss Prevention (DLP)

    Using a DLP profile, administrators can block access to LLM applications when specific keywords are detected in user prompts. This technique uses keyword matching and FQDN filtering to prevent sensitive or restricted data from being sent to external AI services. This is particularly useful for enforcing compliance and protecting intellectual property.

    See Protecting GenAI Access using DLP for more information.
    Previous
    Next

    Related Videos

    sidebar video

    What's New in FOS 7.6.4 Part 1: GenAI Application Visibility

    • 0 views
    • 1 months ago

    AI protection

    AI protection

    Artificial Intelligence (AI) is rapidly transforming business operations, cybersecurity, and digital infrastructure. Among its most prominent forms are Large Language Models (LLMs), such as GPT, which are a type of Generative AI (GenAI) widely used in chatbot applications, such as ChatGPT, DeepSeek, and others. As these chatbots become more common in corporate environments, new risks emerge. AI applications, including but not limited to chatbots, can inadvertently expose sensitive data. For instance, an employee might paste a confidential email into a chatbot to generate a customized reply, potentially exposing sensitive information.

    Securing GenAI has become critical in this evolving landscape. FortiGate offers several methods to restrict or block access to GenAI tools, helping prevent data leaks and protect company information.

    The following table outlines the techniques and highlights scenarios where each method may be most effective.

    Technique

    Description

    Web filter

    Using a web filter profile with the FortiGuard Artificial Intelligence Technology category enables users to monitor and block access to sites in this category by matching the requested URL against FortiGuard’s classification. See Protecting GenAI access using web filter for more information.

    Application control

    Using an application control profile with the Generative AI category enables users to monitor and block access to sites in this category by matching traffic patterns against FortiGuard’s Generative AI signatures. This approach goes beyond URL matching by employing deep packet inspection to identify and control application-level traffic, offering enhanced visibility and insight into AI-related activities.

    See Protecting GenAI access using application control for more information.

    Data Loss Prevention (DLP)

    Using a DLP profile, administrators can block access to LLM applications when specific keywords are detected in user prompts. This technique uses keyword matching and FQDN filtering to prevent sensitive or restricted data from being sent to external AI services. This is particularly useful for enforcing compliance and protecting intellectual property.

    See Protecting GenAI Access using DLP for more information.
    Previous
    Next