The Cloudflare Blog: Beyond the ban: A better way to secure generative AI applications

Aug 25, 2025

—

Source URL: https://blog.cloudflare.com/ai-prompt-protection/
Source: The Cloudflare Blog
Title: Beyond the ban: A better way to secure generative AI applications

Feedly Summary: Generative AI tools present a trade-off of productivity and data risk. Cloudflare One’s new AI prompt protection feature provides the visibility and control needed to govern these tools, allowing

AI Summary and Description: Yes

Summary: The text discusses the urgent need for organizations to adopt robust security measures around generative artificial intelligence (GenAI) usage, particularly through the introduction of AI prompt protection. This security framework aims to prevent the accidental sharing of sensitive data while still allowing the innovation that GenAI can bring.

Detailed Description: The text outlines several key points regarding the implications of using Generative AI in workplace settings and presents AI prompt protection as a solution to mitigate security risks.

– **Context of Use**: Employees increasingly use GenAI for various tasks, inadvertently risking data security by inputting sensitive information.
– Studies indicate that nearly half of the employees admit to sharing confidential data with AI tools.
– A specific incident is mentioned where a new feature in a leading LLM led to private conversations being indexed by search engines, highlighting vulnerabilities.

– **Challenge of Current Practices**: Traditional approaches like banning AI applications are impractical as GenAI offers significant productivity benefits. This necessitates a paradigm shift in security strategies, moving from binary blocking to contextual governance of tools.

– **Introduction of AI Prompt Protection**:
– AI prompt protection aims to identify and secure data entered into web-based AI tools, allowing organizations to govern AI usage without stifling innovation.
– It is integrated within Cloudflare’s Data Loss Prevention (DLP) product and is endorsed as part of a broader AI Security Posture Management strategy.

– **Key Components of AI Prompt Protection**:
– **Prompt Detection**: Captures both user prompts and the AI’s responses, enabling visibility into interactions that traditional security measures struggle to inspect.
– **Topic Classification**: Analyzes and categorizes prompts and responses semantically to enhance context and insight into user interactions.
– **Guardrails**: Establishes specific policies based on the classified topics, allowing tailored restrictions rather than generic blocking.
– **Logging**: Creates an auditable record of interactions for compliance and incident investigation, ensuring encrypted storage with customer-provided keys for privacy.

– **Technology and Implementation**:
– Enhancements from technology partnerships (like Kivera) enable detailed operation mapping to improve policy definitions.
– The use of multiple open-source AI models aids in classifying prompts while ensuring user data is kept secure from third-party access.
– An overview of performance considerations and future enhancements is presented, promising improved visibility, workflow, and integrations for GenAI security.

– **Call to Action**: Organizations are encouraged to employ the AI prompt protection tool to regain control and visibility over AI interactions, signaling Cloudflare’s commitment to empowering secure AI usage.

This analysis emphasizes the significance of addressing security in Generative AI usage and provides practical insights for security and compliance professionals aiming to navigate the evolving landscape of AI tools in the workplace.

a access Act actions age AI AI applications AI interactions ai model AI models AI security AI tool AI tools All analysis and anti app Application applications Arch art artificial Artificial Intelligence as at ated audit based being benefits beyond Bi by C challenge CI CIA class classification Cloud Cloudflare Cloudflare One co commit compliance compliance professionals Context control conversation Current custom Customer D data data loss data loss prevention Data Loss Prevention (DLP) data risk data security de DeFi definition definitions detection DLP e encrypted storage end engines event feature for framework future g Gen GenAI generative Generative AI generative AI tools generative art generative artificial intelligence Go governance gs Guardrails H high Highlight HR http HTTPS implementation implications in incident incident investigation information innovation insights integration integrations Intel intelligence inter interaction interactions investigation io k Key keys l land leading led Li line llm lm logging low M man management measures Mode model models multi N new no NPU o of off on one ons open open-source operation opt organization organizations oS oss out over partners partnership partnerships party per performance performance considerations point policies policy post posture management Power practices pre prevention privacy pro product productivity professionals prompt prompt protection prompts protection ps R rag rate RCE re record red response responses restrictions Risk risks Ro robust security robust security measures RoT RSA s search search engine search engines sec secure security security and compliance security framework security measure security measures security posture security posture management security risk security risks security strategies Semantic sensitive data sensitive information settings SHA sharing shift side Sig Signal size sizes source specific SSE STIG storage strategies Strategy T Task tasks tech technology technology partnerships ted text the third third-party third-party access to tool tools Tor TP trade US usage use user user data user interaction user interactions user prompts V visibility vulnerabilities web Wi workflow Workplace x z