DEV Community

Cover image for How to Get Visibility Into All AI Traffic Leaving Employee Devices
Claire Dubois
Claire Dubois

Posted on

How to Get Visibility Into All AI Traffic Leaving Employee Devices

How to Get Visibility Into All AI Traffic Leaving Employee Devices

Bifrost provides visibility and control over shadow AI by extending gateway-level governance to the endpoint. Discover how to inventory every AI app and MCP server on employee devices to eliminate compliance and security blind spots.

The adoption of generative AI tools in the enterprise has created a significant governance gap. Employees use platforms like ChatGPT, Claude, and Gemini to improve productivity, but this often happens outside of approved IT channels, a phenomenon known as "shadow AI." This unsanctioned use creates blind spots where sensitive company data can be exposed to external systems without oversight, audit trails, or security controls. An open-source AI gateway like Bifrost from Maxim AI can centralize AI policy, but its rules only apply to traffic configured to pass through it, leaving endpoint traffic ungoverned.

The Business Risks of Unseen AI Usage

Ungoverned AI usage is not a theoretical problem; it introduces tangible risks. When employees input proprietary code, customer data, or strategic documents into public AI tools, that information can be used for model training or become permanently exposed. This creates immediate compliance challenges with regulations like GDPR, HIPAA, and SOC 2, which require strict data handling and auditability.

Frameworks like the NIST AI Risk Management Framework (AI RMF) emphasize a systematic approach to identifying, measuring, and managing AI risks. A core part of this process is establishing governance, which is impossible when the organization cannot see which AI tools are in use or what data is flowing into them. Without visibility, there can be no meaningful risk management.

Why Traditional Network Monitoring Isn't Enough

Many organizations first turn to traditional security tools like firewalls or network proxies for visibility. While these tools can identify traffic to known web domains, they fall short in the context of modern AI applications.

  • Encrypted Traffic: Most AI tool traffic is encrypted via HTTPS, obscuring the specific prompts and responses from network-level inspection.
  • Desktop Applications: Native desktop clients for tools like Claude, ChatGPT, and Cursor may use APIs that are difficult to distinguish from general web traffic.
  • Model Context Protocol (MCP) Servers: Developers and advanced users connect their tools to local or remote MCP servers, which act as external tools. These connections often fly completely under the radar of network monitoring.
  • Lack of Context: Network logs might show a connection to api.openai.com, but they cannot reveal the user, the specific application that initiated the request, or whether the usage complies with company policy.

This lack of granular visibility means security and IT teams are left guessing about the organization's true AI footprint and risk exposure.

The Solution: Centralized Policy with Endpoint Enforcement

A comprehensive approach to AI governance requires a combination of a central control plane and an endpoint enforcement layer. The Bifrost AI gateway serves as the centralized policy engine where administrators configure access controls, budgets, routing rules, and security guardrails.

To extend this governance to every device, an endpoint agent is needed. Bifrost Edge is an agent that runs on employee machines (macOS, Windows, and Linux) and directs all AI traffic through the central Bifrost gateway. This ensures that the same policies that govern server-side applications are also applied to desktop apps, browser-based AI, and coding agents used by employees. This combined "AI Gateway + Bifrost Edge" model closes the visibility gap created by shadow AI.

Gaining a Fleet-Wide Inventory with Bifrost Edge

The first step to managing shadow AI is discovering it. Instead of relying on manual surveys or incomplete network logs, Bifrost Edge provides a real-time, automated inventory of all AI activity across the fleet.

Automated AI Application Discovery

Once deployed via an MDM platform like Jamf or Intune, Bifrost Edge begins to identify AI traffic on the device. It transparently detects and catalogs every AI application in use, including:

  • Desktop Apps: Claude Desktop, ChatGPT, Cursor
  • Browser AI: Activity on claude.ai and chatgpt.com
  • CLI Agents: Claude Code, Codex CLI, Gemini CLI

This information populates a central Devices Dashboard where administrators can see every machine running the agent and which AI tools are installed and active on each one.

A clean, minimalist UI element representing a dashboard. It shows a list of stylized icons for various AI applications (

Complete MCP Server Visibility

A critical blind spot for most organizations is the use of MCP servers. Bifrost Edge provides unique visibility into this layer by inspecting the configurations of supported AI tools to build a fleet-wide inventory of every MCP server employees have connected to their applications. This allows administrators to finally see all the external tools that have potential access to enterprise data and workflows.

From Visibility to Governance

Once a complete inventory of AI apps and MCP servers is established, security teams can move from discovery to action. The Approvals Dashboard in Bifrost allows administrators to review every discovered tool and set a policy for it:

  • Approved: The tool is explicitly allowed and all traffic is routed through the gateway for full governance.
  • Denied: The tool is blocked at the endpoint, preventing its use on company devices.

A visual metaphor for a decision process: a line of application icons approaches a junction, where a simple, large toggl

This visibility is the foundation of a zero-trust approach to AI, where no application is trusted by default. By enforcing that all AI traffic passes through a central gateway, organizations can apply data access controls, security guardrails, and immutable audit logs to every request, regardless of where it originates.

Teams seeking to eliminate shadow AI blind spots can request a Bifrost demo or review the open-source repository to learn more about its endpoint governance capabilities.

Sources

Top comments (0)