* [Blog](https://www2.paloaltonetworks.com/blog)
* [Palo Alto Networks](https://www2.paloaltonetworks.com/blog/corporate/)
* [Products and Services](https://www2.paloaltonetworks.com/blog/category/products-and-services/)
* Securing and Managing Cha...

# Securing and Managing ChatGPT Traffic with Palo Alto Networks App-ID

[](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2F2023%2F05%2Fsecuring-and-managing-chatgpt-traffic%2F)  
[](https://twitter.com/share?text=Securing+and+Managing+ChatGPT+Traffic+with+Palo+Alto+Networks+App-ID&url=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2F2023%2F05%2Fsecuring-and-managing-chatgpt-traffic%2F)  
[](https://www.linkedin.com/shareArticle?mini=true&url=https%3A%2F%2Fwww2.paloaltonetworks.com%2Fblog%2F2023%2F05%2Fsecuring-and-managing-chatgpt-traffic%2F&title=Securing+and+Managing+ChatGPT+Traffic+with+Palo+Alto+Networks+App-ID&summary=&source=)  
[](https://www.paloaltonetworks.com//www.reddit.com/submit?url=https://www2.paloaltonetworks.com/blog/2023/05/securing-and-managing-chatgpt-traffic/&ts=markdown)  
\[\](mailto:?subject=Securing and Managing ChatGPT Traffic with Palo Alto Networks App-ID)  
Link copied  
By [Cecilia Hu](https://www.paloaltonetworks.com/blog/author/cecilia-hu/?ts=markdown "Posts by Cecilia Hu"), [Jiangnan Li](https://www.paloaltonetworks.com/blog/author/jiangnan-li/?ts=markdown "Posts by Jiangnan Li") and [Qi Deng](https://www.paloaltonetworks.com/blog/author/qi-deng/?ts=markdown "Posts by Qi Deng")  
May 12, 2023  
5 minutes  
[Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)  
[AI](https://www.paloaltonetworks.com/blog/tag/ai/?ts=markdown)  
[App-ID](https://www.paloaltonetworks.com/blog/tag/app-id/?ts=markdown)  
[Application](https://www.paloaltonetworks.com/blog/tag/application/?ts=markdown)  
[CDSS](https://www.paloaltonetworks.com/blog/tag/cdss/?ts=markdown)  
[chatbot](https://www.paloaltonetworks.com/blog/tag/chatbot/?ts=markdown)  
[ChatGPT](https://www.paloaltonetworks.com/blog/tag/chatgpt/?ts=markdown)  
[OpenAI](https://www.paloaltonetworks.com/blog/tag/openai/?ts=markdown)

This post is also available in: [日本語 (Japanese)](https://www2.paloaltonetworks.com/blog/2023/05/securing-and-managing-chatgpt-traffic/?lang=ja "Switch to Japanese(日本語)")

Imagine you are working on a confidential contract, feeling uncertain about the foreign language and writing. Then, you find a powerful AI tool that can improve your writing to perfection. You eagerly send your contract to the AI, and it delivers as promised. However, you later realize that your confidential document was fed into the AI model and could potentially be reviewed by AI trainers. Even worse, it is possible that your contract might be used to train the model and appear in other users' outputs. How would you react? The dilemma of usability and the security of AI tools is becoming a real concern since ChatGPT was released.

Developed by OpenAI, ChatGPT is an artificial intelligence chatbot that was built on OpenAI's GPT-3.5 and the recent GPT-4 models. With over 100 million monthly active users, ChatGPT has become the most buzz worthy AI product on the internet.

Here are some of ChatGPT's capabilities: natural language generation, answering questions, sentiment analysis, translation, content creation and so on. However, despite its impressive abilities in natural language processing (NLP), ChatGPT has also raised many concerns regarding plagiarism, privacy and data leakage.

## The Security Concerns of ChatGPT

In March, Italy temporarily banned ChatGPT amid concerns that the artificial intelligence tool violated the country's policies on data collection. In the meantime, companies like Amazon and Walmart have taken action. They have warned employees to take care in using generative AI services: do not share information with AI-systems like ChatGPT, and do not share code with the AI chatbot. In fact, Samsung employees accidentally leaked trade secret data via ChatGPT. Based on the ChatGPT abilities mentioned above, it could raise security concerns in several ways. It could help attackers write malicious code with various obfuscations embedded. It can augment the content for social engineering attacks, so attackers can use the ChatGPT to produce convincing phishing content. Last but not least, there is also the potential security risk of data leakage since the people might submit sensitive data into the model, and this information might be retrieved later.

According to a [recent blog post](https://unit42.paloaltonetworks.com/chatgpt-scam-attacks-increasing/) by Unit 42 researchers, ChatGPT-themed scam attacks are on the rise. Between November 2022 through early April 2023, they noticed a 910% increase in monthly registrations for domains related to ChatGPT and a 17,818% growth of related squatting domains from DNS Security logs. The researchers presented several case studies to illustrate the various methods scammers use to entice users into downloading malware or sharing sensitive information. They highlighted the potential dangers of using copycat chatbots and encourage ChatGPT users to approach such chatbots with a defensive mindset. The [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering), [DNS Security](https://www.paloaltonetworks.com/products/threat-detection-and-prevention/dns-security) and [WildFire](https://www.paloaltonetworks.com/products/secure-the-network/wildfire) subscriptions have addressed this issue.

## App-IDs Related to OpenAI

Palo Alto Networks diligently monitors the latest AI trends and actively assesses potential threats associated with them. To increase the visibility of OpenAI-related traffic and help our customers manage and control ChatGPT usage with our Next-Generation Firewalls (NGFWs), we released three OpenAI-related App-IDs in April: openai-base, openai-chatgpt and openai-api.

**openai-base** : Covers the general traffic of OpenAI, except for ChatGPT. This App-ID will cover network traffic related to OpenAI research, developers' tutorial and documentation, company information and products (such as DALL·E). It will also show as openai-base in NGFWs' traffic log on the [OpenAI website](https://openai.com/).

**openai-chatgpt** : Covers the traffic of a [ChatGPT web-based interface](https://chat.openai.com/), which is a more general way to use ChatGPT among casual users.

**openai-api** : Covers the traffic of all API-related traffic of OpenAI, not only ChatGPT, but other features like image generation. OpenAI provides [APIs](https://platform.openai.com/docs/introduction) to enable the access to AI models programmatically. The AI models that support ChatGPT, like GPT-3 and GPT-4, can be accessed through OpenAI APIs, which is a more general way to use ChatGPT among developers.

To simplify the process of OpenAI traffic management, an App-ID container openai that contains the above three App-IDs was released together, as shown in figure 1.

![Security policy rule for managing ChatGPT traffic.](https://www.paloaltonetworks.com/blog/wp-content/uploads/2023/05/appid-ui.png)

## Managing OpenAI Traffic Through Security Policies

The three OpenAI App-IDs enable Palo Alto Networks NGFW customers to flexibly control and manage the accessibility of ChatGPT and give clear visibility of OpenAI traffic, generated from different interfaces. The three App-IDs are identified separately, so simply blocking openai-base cannot block openai-chatgpt or openai-api.

**![](https://www.paloaltonetworks.com/blog/wp-content/uploads/2023/05/word-image-293245-2.png)**  
**![Policy's results for managing ChatGPT traffic.](https://www.paloaltonetworks.com/blog/wp-content/uploads/2023/05/policy-config.png)**

The security policies configuration for OpenAI traffic management through the three App-IDs show different scenarios. In figure 2, where ✅ means "allow" in the security policy rule, and means "deny."

We would like to note that if you want to allow an App-ID, it "depends on" App-IDs should also be allowed to make the application fully functional. For example, the openai-base App-ID depends on SSL, web-browsing and WebSocket. These three App-IDs need to be allowed together with openai-base. Similarly, if you want to allow openai-chatgpt or openai-api, openai-base (including its three "depends on'' App-IDs) should be allowed to obtain full access.

## New Challenges from AI

The increasingly popular ChatGPT AI application introduces new challenges and threats to today's digital landscape. Equipped with the three OpenAI App-IDs, Palo Alto Networks NGFW empowers customers to control and manage ChatGPT usage and access with flexibility. These App-IDs also grant enhanced visibility of ChatGPT utilization for enterprise network administrators. This enhances enterprise network security and mitigates potential data breaches. [Enterprise DLP also helps to prevent data exfiltration to ChatGPT.](https://docs.paloaltonetworks.com/enterprise-dlp/enterprise-dlp-admin/configure-enterprise-dlp/enterprise-dlp-and-ai-apps/how-enterprise-dlp-safeguards-against-chatgpt-data-leakage)

There are and will be more and more large language model based chatbots like ChatGPT, and we will help customers to address those newer concerns in the future, too.

Learn more about the OpenAI-related App-IDs on Palo Alto Networks [Application Research Center](https://applipedia.paloaltonetworks.com/).

*** ** * ** ***

## Related Blogs

### [Cloud NGFW](https://www.paloaltonetworks.com/blog/network-security/category/cloud-ngfw/?ts=markdown), [Event](https://www.paloaltonetworks.com/blog/category/event/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### The Power of Unity](https://www2.paloaltonetworks.com/blog/2025/12/the-power-of-unity/)

### [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown), [Zero Trust Security](https://www.paloaltonetworks.com/blog/network-security/category/zero-trust-security/?ts=markdown)

[#### 'Tis the Season for Smarter Holiday Browsing Across Every Connection](https://www2.paloaltonetworks.com/blog/network-security/tis-the-season-for-smarter-holiday-browsing-across-every-connection/)

### [AI Security](https://www.paloaltonetworks.com/blog/category/ai-security/?ts=markdown), [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [Ignite](https://www.paloaltonetworks.com/blog/category/ignite/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Prisma AIRS 2.0 Is Powering the Next Wave of Secure AI Innovation](https://www2.paloaltonetworks.com/blog/2025/10/prisma-airs-powering-secure-ai-innovation/)

### [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [Cloud NGFW](https://www.paloaltonetworks.com/blog/network-security/category/cloud-ngfw/?ts=markdown), [Cloud Security](https://www.paloaltonetworks.com/blog/category/cloud-security/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown), [Strata Network Security Platform](https://www.paloaltonetworks.com/blog/network-security/category/strata-network-security-platform/?ts=markdown)

[#### What Is a Hybrid Mesh Firewall and Why It Matters](https://www2.paloaltonetworks.com/blog/2025/08/hybrid-mesh-firewall-and-why-it-matters/)

### [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Unit 42 Develops Agentic AI Attack Framework](https://www2.paloaltonetworks.com/blog/2025/05/unit-42-develops-agentic-ai-attack-framework/)

### [Announcement](https://www.paloaltonetworks.com/blog/category/announcement/?ts=markdown), [Products and Services](https://www.paloaltonetworks.com/blog/category/products-and-services/?ts=markdown)

[#### Deploy Bravely with Prisma AIRS](https://www2.paloaltonetworks.com/blog/2025/04/deploy-with-prisma-airs/)

### Subscribe to the Blog!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
![spinner](https://www2.paloaltonetworks.com/blog/wp-content/themes/panwblog2023/dist/images/ajax-loader.gif) Sign up  
Please enter a valid email.  
By submitting this form, you agree to our [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) and acknowledge our [Privacy Statement](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown). Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.  
This site is protected by reCAPTCHA and the Google [Privacy Policy](https://policies.google.com/privacy) and [Terms of Service](https://policies.google.com/terms) apply.  
{#footer} {#footer}

## Products and Services

* [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown)

* [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown)

* [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown)

* [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown)

* [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown)

* [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown)

* [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown)

* [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown)

* [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown)

* [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown)

* [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown)

* [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown)

* [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown)

* [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown)

* [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown)

* [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown)

* [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown)

* [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown)

* [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown)

* [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown)

* [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown)

* [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown)

* [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown)

* [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown)

* [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown)

* [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown)

* [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown)

* [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown)

* [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown)

* [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown)

* [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown)

* [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown)

* [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown)

* [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown)

* [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown)

* [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown)

* [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown)

## Company

* [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown)
* [Careers](https://jobs.paloaltonetworks.com/en/)
* [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown)
* [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown)
* [Customers](https://www.paloaltonetworks.com/customers?ts=markdown)
* [Investor Relations](https://investors.paloaltonetworks.com/)
* [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown)
* [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown)

## Popular Links

* [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown)
* [Communities](https://www.paloaltonetworks.com/communities?ts=markdown)
* [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown)
* [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown)
* [Event Center](https://events.paloaltonetworks.com/)
* [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center)
* [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown)
* [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown)
* [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown)
* [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown)
* [Tech Docs](https://docs.paloaltonetworks.com/)
* [Unit 42](https://unit42.paloaltonetworks.com/)
* [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd)
  ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)
* [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown)
* [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown)
* [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown)
* [Documents](https://www.paloaltonetworks.com/legal?ts=markdown)

Copyright © 2026 Palo Alto Networks. All Rights Reserved

* [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks)
* [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown)
* [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/)
* [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks)
* [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks)
* EN  
  Select your language