Skip to main content
  • EN

AD_4nXcPAeD_eDRXY2pVtL5z0Qth_6f1dfHw3hCRIq7Wb4CRio1fXclm8ebu1AnTxyL21srRckGWY6KCAvnHDq-Kh4Cy9gBcf2vXMGfT7V7GAT9XVkeQ31ILe9af5iJs7K14qpk-Oi4BvBaxk1VVYY_JALPEuZfV?key=J4MG9cdFGpjW2qCUSvAy8A

Netskope Global Technical Success (GTS)

Netskope DLP : Securing Source Code in ChatGPT Interactions

Activity ‘Post’

 

Netskope Cloud Version - 115

 

Objective

DLP on Source Code for ChatGPT activity - ‘Post’

 

Prerequisite

Netskope Inline CASB license is required

 

Context

End-users often utilize ChatGPT for unofficial purposes, sometimes sharing sensitive source code-level information, inadvertently exposing their organization to potential data exfiltration risks. This article highlights how Netskope effectively addresses this concern. Netskope DLP can swiftly detect source codes within the chat environment and proactively prevent the unauthorized transmission of sensitive data

 

Do You Know?

  • Netskope acknowledges ChatGPT as a Cloud Application and provides a pre-defined cloud app connector.
  • As of June 05, 2024 with Netskope’s ChatGPT predefined connector, customers can exercise control over the following activities:

AD_4nXf5YvCX5UNzAbL7rlMtzjk5095GdnEdChNwXNgJUUBQZcfwYNyE7ndzd4hb3y9--AbsMbVxkAcMyEwont9EdXDn4HeEyDvbxP7DaAtu3HU_VpF41yqh7II6URf6Tv8qFsZpXasXTZsty3gjcoZr1n2d__8R?key=J4MG9cdFGpjW2qCUSvAy8A

 

Configuration

Step 1 - DLP Profile

  • Netskope's predefined DLP profile effectively detects source codes

Path - Netskope Tenant UI >>> Policies >>> DLP

AD_4nXcc-JtSHfIio1oN77YlPbLob0sxCgQG-5dETVjMJqfuJIWsGJB6-oU-GYiuMDsLOixOIYWFEgQrclO6TZb0ABkNJN5_G_v2dXnyhjmNAV36Ai3Uf8tekYFyDqLBgvLIAQXXk-EbHk9gNP6OuMY5LolCGwDs?key=J4MG9cdFGpjW2qCUSvAy8A

  • The predefined DLP profile can detect source codes written in below programming languages

AD_4nXePU4CJ4ogvxSe0WJe-0EXfHiLi4SPEiWDECCNDfYNo2h1tTeH2UJQ7epuoMJATOeDCFIpSZmqtkh0msREHyHuwqWF15Etp_kP-xI3H93Y39UgFwUQpQ8NmZCbMqR6_fyg-U652doaXIwvZLTwzATkTovV_?key=J4MG9cdFGpjW2qCUSvAy8A

 

Step 2 - Real-time protection policy

Path - Netskope Tenant UI >>> Policies >>> Real-time Protection >>> New Policy

AD_4nXeC7y3ybRA11VAfSdPK9vuoG3XKEN-Q0kv2imW0dWK21b0k3DFRz669VmgiLigrS7689ChrqOXXtQNc_CZoIedf4w0Oo44IrqcYBP-4aiwDcGuXgU99jYzcIj0TL5tDbipzN3CDsDD7nS0KDM1S6OzmOIA?key=J4MG9cdFGpjW2qCUSvAy8A

Verification

  • For testing I copied a random code written in C++ from Link

AD_4nXdZfhVCsKFi0rlnLi6pZVCP5kZf2J6uCYW9kA56C1qY9E7VSV5aigaGxw4nWMb5gmb2oYQBPhUDiu3kS6D1l_RZn70evboCzR_41xjQa9gJ8Hg8351iERxt6TSU62PcbaaIb-udqCXYjogrSRoisavdieQ?key=J4MG9cdFGpjW2qCUSvAy8A

  • Access ChatGPT and Post the C++ source code

AD_4nXd-2EMy7pjVQ_Gka7K8vey__dqc2BEhBW_xYF6mkjuyK1DuaC5aKFNHOMvEogp-xthRGRNGA7higxCKjEbLLZ91xJt4MEc_6aE5UCfIjbRc4oIlEYjTFBWCcX75OLruKPdB5M8hIeBbCQSIFZ-WEopXoFoR?key=J4MG9cdFGpjW2qCUSvAy8A

  • Netskope DLP detected C++ source code and ChatGPT could not load the Post

AD_4nXcYeuFDrWjbao3QQN3UbAPZMGpOzk-RPdPgdlY2n9iN2ACLqMYgD6YOhNsRYQ4TWN9GZDgdV83XMm50SosZykb1SS4rzPRoDuZyAl3uMxx4sM1zRSKsivkbRQXqkvWE-AoooieY-efdkkChlLhUaY68P0YP?key=J4MG9cdFGpjW2qCUSvAy8A

  • Check policy hits

AD_4nXf0GKSyJ0BtLMXkUDlj3LLIfn0SqkVT2SyuOgOnVFGVwF6c315cKVgcHhML5cnIgdq_rlFUuI_rVnh4AuraaTV_Ffcnz1aw72kZJsQ8jRICRv41Kc8XGXwX5lX1kNmy3MlQhDL4vuWi8v67fRlNzSif1_-h?key=J4MG9cdFGpjW2qCUSvAy8A

AD_4nXcupMgyj0cvBbvp7xsvFcWUoWOYSR5pPZ3vWMnjtpXG0FqwkOl8NXO_ANVF3L2CjYft7h3SWw-lIvKCvORf6Qwqc9gcYxrf_KoifApcpo5cctdXh33TYl8iTCHmzx97dduSOPXNLpnae9kzG-C18Ex2jS08?key=J4MG9cdFGpjW2qCUSvAy8A

  • If desired results are not obtained, verifying the SSL inspection settings is step 1

AD_4nXdpAcZfOFziU_9JD63CmUJL1yYvzbbXP27db-yw7C0d_1bdAy34OT8sRxffU46dP_JOfCysEDZpq6bzv2zuXZJUUuAMAXO46o32UwKsnRHMbqBz0w-kymYGWFLY1gO1VxIqynFnLU3hCtSwVt74na2uJLk?key=J4MG9cdFGpjW2qCUSvAy8A

 

Terms and conditions

  • All documented information undergoes testing and verification to ensure accuracy.
  • In the future, it is possible that the application's functionality may be altered by the vendor. If any such changes are brought to our attention, we will promptly update the documentation to reflect them.

 

Notes

  • This article is authored by Netskope Global Technical Success (GTS).
  • For any further inquiries related to this article, please contact Netskope GTS by submitting a support case with 'Case Type – How To Questions'.

 

Terms & ConditionsCookie settings