Credential and secret protection
Detect password assignments, API keys, access tokens, bearer tokens, JWTs, private-key headers, and other structured secret patterns.
- Password assignment
- API key
- Bearer token
- Private-key header
Redirective AI inspects prompts locally, stops sensitive information before transmission, and gives security teams centralized control—without sending prompt content to the cloud.
Zero Prompt Content architecture
Enterprise AI adoption moves faster when policy follows the interaction. Redirective evaluates risk on the device—at the moment a prompt is sent.
Detect password assignments, API keys, access tokens, bearer tokens, JWTs, private-key headers, and other structured secret patterns.
Define restricted phrases, internal project names, product terminology, confidential dictionaries, and custom regular expressions.
Prompt content is evaluated on the endpoint before transmission. The SaaS control plane receives the event facts administrators need—not the blocked prompt.
Cached, signed, last-known-good policies continue enforcing protection when the endpoint cannot reach the Redirective SaaS platform.
This simulation uses an obviously fake credential assignment. It never includes a working password, key, token, or private-key value.
Coverage is adapter-specific and versioned. Status reflects product direction, not endorsement by any AI provider.
The control plane distributes signed policy and receives security metadata. Content inspection remains inside the endpoint trust boundary.
Administrators see device health, policy coverage, application distribution, and metadata-only enforcement events.
| Timestamp | Device | User | AI application | Action | Category | Severity | Rule | Support reference |
|---|---|---|---|---|---|---|---|---|
| 14:32:08Z | WKSTN-0214 | usr_71e2 | ChatGPT | BLOCK | Structured secret | High | SEC-104 | EVT-7FA2 |
| 14:29:51Z | WKSTN-0779 | usr_a82c | Claude | WARN | Restricted phrase | Medium | TERM-22 | EVT-7F9D |
| 14:12:13Z | WKSTN-0031 | usr_2bd1 | Gemini | BLOCK | Access token | Critical | SEC-101 | EVT-7E80 |
Redirective AI launches around local prompt governance and secret protection. Broader controls remain clearly labeled until they are ready.
Structured secret detection, restricted terms, policy distribution, metadata-only events, and allow/warn/block enforcement.
Value-aware redaction, refined browser coverage, and policy testing workflows.
Approved AI enforcement, shadow AI governance, response inspection, and richer data classification.
AI threat detections and endpoint/XDR workflows are a direction—not a currently available capability.
Review the zero-prompt-content model and endpoint architecture, then bring your AI applications, policy requirements, and rollout constraints to a technical demonstration.