Enterprise Security
Enterprise-grade protection with strict leakage and access controls.
Contributors
Overview
Enterprise Security is our most rigorous general-purpose security profile. It is designed for large-scale enterprises with zero-trust environments. This profile enforces strict access controls, comprehensive audit logging, and deep inspection of both inputs and outputs.
It goes beyond simple filtering to include IAM permission checks and tool access controls, making it suitable for applications that integrate deeper into enterprise infrastructure.
Included Guardrails
6 RulesPII Detection Guardrail
Detects and optionally redacts personally identifiable information in user input.
PHI Awareness Guardrail
Detects protected health information to support HIPAA compliance.
Secrets in Input Guardrail
Detects API keys, tokens, and credentials in user input.
Internal Endpoint Leak Guardrail
Prevents exposure of internal service endpoints.
IAM Permission Guardrail
Enforces least-privilege IAM permissions.
Tool Access Control Guardrail
Enforces fine-grained access control for tool invocation.
Key Benefits
Zero Trust Alignment
Validates permissions and access controls for every tool call and data access attempt.
Comprehensive Auditing
Enforces structure logging for compliance and forensic analysis.
Deep Packet Inspection
Analyzes prompts for sophisticated attacks including indirect injections.
Wait, when should I use this?
Integration
{
"profile": "enterprise-security",
"integration": {
"iam_provider": "aws-iam",
"audit_sink": "splunk"
}
}Frequently Asked Questions
Does this introduce latency?
Yes, due to the depth of inspection and external IAM checks, expect a 50-100ms overhead compared to the default profile.
Is it HIPAA compliant?
It includes PHI awareness, but for strict HIPAA compliance, use the dedicated Healthcare profile.