Policy rules that are added to support changing and evolving business needs result in too many policies which are outdated, redundant and overly permissive. These rules allow applications that aren’t in use in your network which can lead to more vulnerable attack surfaces and introduce security gaps. Prisma Access automates the process of identifying these overly permissive rules and replaces them with more specific rules that only allow the applications that are actually in use in your network.
The ML powered Policy Optimizer identifies rules that are allowing “any” application traffic based on the log activity. The Optimizer auto-generates recommendations for the rule to be optimized. The recommended rules explicitly allow only the applications that have been detected in your network in the last 90 days. Customers can review and accept the recommended rules to proceed with the optimization. The original rule is listed below the recommended rules, for monitoring and review and removing the rule when appropriate.
Click on these links to learn more :