Surface Security Features
Surface Security gives security teams full visibility into how employees interact with authentication systems, SaaS applications, and AI tools across their browsers — without passwords ever leaving the endpoint. This section documents every feature of the product from an operator's point of view: what each page shows, how the underlying detection works, and how to configure it.
If you are deploying or operating the platform itself (installation, sizing, upgrades, APIs), see the Platform Guide.
Where to start
| If you want to... | Start here |
|---|---|
| Understand the dashboards and daily monitoring workflow | Dashboards |
| Triage and respond to security alerts | Alerts |
| See who and what is enrolled | Users & Groups, Devices |
| Map the applications and credentials in use | Attack Surface Discovery, Credential Endpoints |
| Understand phishing protection | Phishing Detection |
| Govern AI tool usage and data loss | AI Usage, Browser DLP |
| Administer the console | Onboarding, Admin Users & Roles |
| Run multiple tenants as an MSSP | MSSP Overview |
| Deploy the iOS companion app | iOS Getting Started |
Feature areas
Monitoring & Response — the main, analyst, and executive dashboards, the alert triage workflow, the raw event explorer, campaign intelligence that groups related attacks, threat clusters, and global search.
Users & Devices — directory-synced user inventory with per-user risk, enrolled browser devices, BYOD gating with the Device Identity Tag, passkey adoption tracking, and help-desk identity verification codes.
Attack Surface — passive discovery of every application, authentication endpoint, and third-party browser extension your workforce touches, plus the domain scopes and protected domains that focus monitoring where it matters.
Threat Protection — layered phishing detection (lookalike domains, cloned-page detection, adversary-in-the-middle, ClickFix), active countermeasures that disrupt attacker tooling, and per-alert-type response playbooks.
AI & Data Protection — visibility into workforce AI usage, governance controls for generative AI tools, agentic AI session security, and browser-level data loss prevention.
Administration — the onboarding wizard, admin roles and permissions, single sign-on, tenant-wide settings, and the audit log.
MSSP & Multi-Tenant — for managed security providers: cross-tenant monitoring, tenant lifecycle management, delegated admin access, policy floors and templates, alert routing, and white-label branding.