Microsoft Entra Internet Access revolutionizes AI security with an identity-centric secure web and AI gateway, protecting enterprises from data leakage, prompt injection, and Shadow AI risks. This network-layer solution enables safe, compliant GenAI adoption without app rewrites.
Securing AI in the Age of Identity-Centric Protection
Generative AI is revolutionizing the workplace. Already, 75% of knowledge workers use AI daily to innovate and collaborate. However, only 25% of AI initiatives have proper security in place. This gap leaves enterprises vulnerable to data leaks, prompt injection attacks, and Shadow AI risks. Identity and security leaders highlight these as top concerns. Without a unified security strategy, sensitive data is at risk of exposure. At Microsoft Ignite 2025, a game-changing solution emerged. Microsoft Entra Internet Access now integrates a secure web and AI gateway. This identity-centric approach brings AI-aware protections into the network layer. Traditional security tools often miss AI-specific threats, but this gateway closes those gaps seamlessly.“This represents a significant leap forward in securing AI-driven enterprises,” said a Microsoft spokesperson.
Key Features That Empower Security Teams
The new gateway offers powerful tools currently in Public Preview. Shadow AI Detection discovers unsanctioned AI tools by analyzing cloud app usage. It empowers teams to control access through Conditional Access policies, blocking risky AI apps instantly. Network File Filtering prevents data leakage by blocking uploads/downloads based on file types and inspecting content with Microsoft Purview integration. This stops confidential information from leaking to unauthorized AI services. Prompt Injection Protection is a standout feature. It inspects AI traffic inline and blocks malicious prompts in real-time. By extending Azure AI Prompt Shields to the network level, it protects all AI apps without rewriting code. This ensures uniform security across devices, browsers, and cloud environments.Why Identity-Centric AI Security Matters
Securing AI starts with identity as the central control point. Microsoft Entra Suite enhances this by automating least privilege access and enabling adaptive governance. It reduces operational overhead and tightens security dynamically based on user behavior and risk. Additionally, intelligent local access and passwordless remediation simplify secure connectivity to all apps.“Identity is the most strategic control point for security in a world of AI-driven hybrid work,” noted Igor Sakhnov, Corporate VP, Deputy CISO, Identity.In summary, Microsoft’s new secure web and AI gateway empowers tech professionals to accelerate AI adoption safely. It balances innovation with compliance, reduces risk, and provides seamless protection across the enterprise. Now is the time to embrace identity-driven AI security to unlock AI’s full potential—without compromise.
Key points from the article:
From the Microsoft Entra Blog articles
