惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

酷 壳 – CoolShell
酷 壳 – CoolShell
GbyAI
GbyAI
SecWiki News
SecWiki News
Project Zero
Project Zero
C
Cisco Blogs
Simon Willison's Weblog
Simon Willison's Weblog
P
Privacy International News Feed
D
Darknet – Hacking Tools, Hacker News & Cyber Security
Scott Helme
Scott Helme
A
Arctic Wolf
Security Latest
Security Latest
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
P
Privacy & Cybersecurity Law Blog
Apple Machine Learning Research
Apple Machine Learning Research
T
Tailwind CSS Blog
The Hacker News
The Hacker News
T
Tenable Blog
雷峰网
雷峰网
有赞技术团队
有赞技术团队
V
V2EX
C
CXSECURITY Database RSS Feed - CXSecurity.com
T
Threat Research - Cisco Blogs
T
Threatpost
AWS News Blog
AWS News Blog
L
LINUX DO - 热门话题
Application and Cybersecurity Blog
Application and Cybersecurity Blog
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
S
SegmentFault 最新的问题
月光博客
月光博客
Spread Privacy
Spread Privacy
S
Secure Thoughts
宝玉的分享
宝玉的分享
博客园 - 三生石上(FineUI控件)
Forbes - Security
Forbes - Security
T
The Exploit Database - CXSecurity.com
G
GRAHAM CLULEY
The Last Watchdog
The Last Watchdog
Y
Y Combinator Blog
I
Intezer
博客园 - 【当耐特】
B
Blog RSS Feed
Attack and Defense Labs
Attack and Defense Labs
I
InfoQ
博客园 - 叶小钗
Cyberwarzone
Cyberwarzone
V2EX - 技术
V2EX - 技术
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
Hugging Face - Blog
Hugging Face - Blog
H
Help Net Security
C
CERT Recently Published Vulnerability Notes

Fortinet All Blogs

The TTF Trap: A Global Campaign of a Low-Detection Lua Loader | FortiGuard Labs Helping Law Enforcement Keep Pace with the Future of Cybercrime | Fortinet Blog FortiEndpoint Expands Security for the AI Era | Fortinet Blog Cyber Attacks Leveraging AI Require Behavior-First Security Training, Not Simply Better Awareness | Fortinet Blog The AI Era Needs a New SASE. Here’s What That Actually Looks Like. | Fortinet Blog Analysis of Ongoing Ousaban Attacks Targeting the Iberian Peninsula | FortiGuard Labs Update on Fortinet Use of Frontier AI | CISO Collective Fortinet Supports INTERPOL Operation CyberProtect III Targeting Online Exploitation From CI/CD to Cloud Data: How Shai Hulud Persistence Leads to Redshift Breach | FortiGuard Labs Fortinet Launches Its Product Carbon Footprint Calculator FortiSASE Training Builds Skills for Secure Access Success | Fortinet Blog Analysis of Reported Credential Compromise of FortiGate Devices | Fortinet Blog Teaching Cybersecurity the Way It’s Actually Used | Fortinet Blog Introducing FortiSOC: One Platform, Total Control | Fortinet Blog Public-Private Cooperation Is Critical to AI-Driven Cyber Defense | Fortinet Advancing Threat-Informed Defense through Fortinet’s Collaboration with MITRE CTID | Fortinet Threat Actors Weaponize AI Hype to Deliver AsyncRAT | FortiGuard Labs Fortinet Achieves 1 Million People Trained in Cybersecurity Goal Ahead of Schedule | Fortinet Blog While OT Security Is Maturing, Risk Is Not Slowing Down | Fortinet Blog AI Policy Meets Operational Reality: White House AI Cybersecurity Order Calls for Public-Private Coordination | Fortinet Blog Executive Q&A: Strong Q1 Momentum Driven by Differentiated Innovation and Customer Demand | Fortinet Fortinet Earns AV-Comparatives Certification for EDR Detection Visibility | Fortinet Blog Cybercriminals Are Targeting the FIFA World Cup 2026 | FortiGuard Labs Fortinet Achieves AV-Comparatives Certification for Process Injection Protection | Fortinet Blog Inside the Cross-Platform Propagation of a New Gafgyt Variant C0XMO | FortiGuard Labs Battling AI-Based Threats with FortiNDR | Fortinet Blog Phishing Campaign Deploys JavaScript-Driven PureLogs Variant to Steal Sensitive Data Defending Critical Infrastructure: Why OT Security Demands a Threat-Informed Approach | CISO Collective Misconfigured, Enrolled and Dormant: Anatomy of a P2Pinfect Kubernetes Compromise | FortiGuard Labs Fortinet Expands Cybersecurity Investment in the United Arab Emirates | Fortinet Blog PureLogs: Delivery via PawsRunner Steganography | FortiGuard Labs The Future of Connectivity | Fortinet Blog Fortinet at the World Economic Forum: Frontier AI models, AI-Driven Threats, Deepfakes, and the Future of Cyber Defense | Fortinet Blog The Fortinet 2025 Sustainability Report | Fortinet Blog Supercharged Security: Security in the Time of Mythos | CISO Collective Tracking Mirai Variant Nexcorium: A Vulnerability-Driven IoT Botnet Campaign | FortiGuard Labs Fortinet Training Institute Wins Industry Accolades | Fortinet Blog Shadow AI: The Invisible Risk Growing Inside Your Organization | Fortinet Blog Leading by Example in Sustainability: Fortinet Expands Global EPD Certification | Fortinet Blog When Cybercrime Becomes an Industry | Fortinet Blog FortiOS 8.0: Redefining Secure Networking in the AI and Quantum Era | Fortinet Blog Securing the Physical World as It Comes Online | Fortinet Blog Why the 2026 AI Cybersecurity Summit Matters | Fortinet Blog DPRK-Related Campaigns with LNK and GitHub C2 | FortiGuard Labs AI Is Changing Application Threats Faster Than Teams Can Adapt | Fortinet Blog Announcing the Fortinet Training Institute’s 2026 ATC Award Winners | Fortinet Blog Disrupting Cybercrime Networks at Scale Requires Sustained Global Collaboration | Fortinet Blog
AI Security Is an Architectural Decision | Fortinet Blog
Russ Schafer · 2026-04-15 · via Fortinet All Blogs

As AI adoption accelerates, organizations face a critical architectural decision: extend existing security controls—identity, policy enforcement, observability, and data governance—to cover AI systems, or secure AI as a separate layer. The choice will determine whether AI introduces resilience or instability.

What began as experimentation with public generative AI (GenAI) tools has evolved into something foundational. Many enterprises have begun building private large language model (LLM) environments, integrating AI into core applications, and deploying agentic systems that retrieve data, interact with APIs, and initiate workflows across business systems. As a result, AI is no longer peripheral. Instead, it is becoming part of the infrastructure.

That shift requires a different security mindset.

The most common mistake is treating AI as a standalone application stack with separate controls. In reality, AI workloads depend on and influence identity systems, network policies, data governance, API enforcement, and operational workflows. Securing AI effectively requires embedding governance, traffic inspection, and policy enforcement at every control point across the architecture.

AI Expands the Attack Surface in Layers

AI risk is not confined to a single control point. It emerges across layers.

  • At the interface layer, public GenAI tools and user prompts create exposure through shadow AI use and poorly governed workflows.
  • At the knowledge layer, private LLM infrastructure—training data, vector databases, retrieval pipelines, and model logic—falls under enterprise responsibility. Once AI operates within enterprise systems, the organization assumes full responsibility for its integrity and protection.
  • At the action layer, agentic AI introduces autonomy. Agents retrieve data, transfer information across systems, call APIs, and trigger automated processes, often at machine speed.

These layers are not independent. Risk compounds as autonomy increases. The central challenge is not visibility in isolation but coordinated enforcement across the full stack.

The Sequencing Problem

How organizations adopt AI is just as important as what they deploy.

While some begin with controlled use of GenAI, establish governance for private LLM infrastructure, and introduce agentic autonomy only after developing policy and segmentation frameworks, others move directly from experimentation to automation, deploying agents before architectural guardrails are fully in place.

Industry forecasts indicate that many of these agent-first initiatives will be redesigned or abandoned—not because the underlying technology fails, but because governance was not integrated early. When autonomy outpaces architecture, organizations eventually face regulatory, security, or cost constraints that force redesign.

This is not a technical limitation. It’s a sequencing issue. Governance needs to scale before autonomy.

Runtime Is Where AI Risk Materializes

Development-time controls and pre-deployment testing are insufficient to prevent attacks on production AI. Once AI models are in production, new threats emerge, such as prompt injection, model manipulation, API abuse, and cross-system data exfiltration during inference.

Private LLMs face additional runtime risks, such as training data poisoning and model extraction. Agentic systems increase the potential impact by authenticating users, invoking enterprise APIs, and interacting directly with business systems. That’s why AI security requires continuous controls over users, agents, the network, and applications during operations. 

In practice, this means AI needs to be protected across the network, with policy enforced simultaneously at the firewall, API gateway, and SIEM with zero-trust network access (ZTNA).

Convergence as the Enabler

The broader implication is architectural.

Organizations with fragmented networking and security stacks will struggle to manage AI securely. When policy enforcement, telemetry, identity controls, and API inspection are spread across disconnected systems, AI creates security gaps and new vulnerabilities.

Secure networking convergence offers an alternative approach. A unified operating system foundation, a shared policy framework, and a coordinated telemetry model enable consistent enforcement across edge, cloud, and data center environments. AI workloads should follow the same discipline as any other critical system.

As the Fortinet platform has evolved, AI visibility, runtime guardrails, and agentic controls have been integrated into the converged foundation rather than developed as separate systems. The principle is simple: innovation should enhance the architecture, not divide it.

Governing Agentic Systems

Agentic AI represents the most consequential shift. These systems do more than generate insights. They take action by retrieving information, analyzing data, and interacting with APIs. Their decisions can also spread instantly across the entire managed environment.

That level of authority requires visibility into how agents communicate, the context of their identity, and how their actions align with enterprise policies. At a minimum, automation must remain accountable to governance frameworks, meaning agent systems should operate within established boundaries and not exceed them, and their actions must be logged, explainable, and auditable.

Preparing for What Comes Next

AI adoption will continue to expand. As more companies move their AI experiments into full production, AI infrastructure will grow in response to regulatory pressure and data residency concerns. Consequently, agentic systems will become more mature.

The organizations that succeed will not be those that rush to deploy isolated solutions, but those that choose a robust architectural framework with AI security embedded within it. As AI becomes part of your production environment, it must be governed as part of your architecture rather than as a separate component.

These themes will be central to the 2026 Fortinet AI Security Summit on April 21, where industry analysts, customers, and practitioners will examine how to secure AI across public GenAI use, private LLM deployments, and agentic operations. The focus will be on architectural discipline: maintaining visibility, enforcing policy, and scaling automation without creating new operational fault lines. 

Register now for the 2026 Fortinet AI Security Summit and join the discussion on how to secure AI at scale within the systems that already protect your enterprise.