Prominent cloud connectivity company Cloudflare has introduced two new AI-powered security features—Firewall for AI and Defensive AI—to protect organisations against emerging threats in the wake of generative AI. These solutions aim to fortify AI applications, particularly LLMs, against potential abuse, attacks, and tampering.

Firewall for AI

Cloudflare’s Firewall for AI establishes a defense layer, specifically designed to identify and thwart attacks directed at LLMs. These models, interpreting complex human language and data, are susceptible to threats due to their dynamic nature and unpredictable outputs. Recognising the inherent vulnerability, Cloudflare addresses the challenge by integrating security into the AI landscape from the outset.

Key features

• Rapid Threat Detection: The solution scans and evaluates user prompts submitted to LLMs, swiftly identifying attempts to exploit models and extract data.
• Automatic Threat Blocking: Deployed globally on Cloudflare’s network, Firewall for AI automatically blocks threats in proximity to end-users to ensure immediate protection without requiring human intervention.
• Free Default Security: Cloudflare offers free protection through Firewall for AI for any customer running an LLM on Cloudflare’s Workers AI, mitigating concerns like prompt injection and data leakage.

Defensive AI

The San Francisco based company’s Defensive AI introduces a personalised security approach to counteract AI-driven attacks. Threat actors leverage AI capabilities to execute sophisticated phishing scams, code maliciously, and intensify attacks on critical business functions. Defensive AI focuses on providing tailored mitigations, enabling organisations to safeguard critical applications and entire networks by understanding and adapting to their unique traffic patterns.

Key Features

• API Anomaly Detection: Since APIs constitute a significant portion of web traffic, Cloudflare is developing a solution to prevent attacks targeting applications, account takeovers, and data exfiltration. API Anomaly Detection employs AI to learn and model normal behaviour, identifying deviations indicative of potentially malicious activity.
• Cloud Email Security: With nine out of ten cyber-attacks originating from phishing scams, the feature employs AI models to analyse different elements of email messages, flagging suspicious content and adapting to the rise of AI-enhanced attacks.
• Zero Trust Approach with Gateway: The Cloudflare Gateway facilitates the creation of a user behaviour baseline and evaluates accessed resources to identify potential risks. This includes internal and external resources, providing a score for users and resources to flag or filter potentially unauthorised activities.

The company previously introduced a new platform called Workers AI to build cost-effective, full-stack AI applications. This platform, eliminating infrastructure management, caters to businesses of all sizes, allowing seamless deployment of production-ready applications for various use cases, including LLMs, speech-to-text, image classification, and sentiment analysis.