Native binaries ignore HTTPS_PROXY. CLIs open direct TLS connections. Web apps route around appliances inside the browser sandbox. If enforcement lives above the operating system, AI traffic simply goes underneath it.
Only whitelisted AI-app hosts are decrypted, on the device itself. Employees are informed; enforcement is policy-based. Audit logs carry verdicts, never content.
Claude Cowork multiplies exposure: shared prompts, shared artifacts, one-click uploads, no per-user trail. Aegis enforces policy for every participant at the network layer and attributes every attempt in the audit log.