F5 AI Gateway Solution Overview

The launch of OpenAI in late 2022 started widespread research into and development of artificial intelligence (AI) applications. It is estimated that by 2023, 30% of enterprise applications will use generative AI (GenAI) labeling to reshape their branding in the pursuit of new revenue.*

AI applications are different from previous generations of applications that were built on the expanded usage of application programmer interface (API). AI applications still use APIs for interaction, but the inputs and outputs are non-deterministic, meaning incoming data requests and responses from the application can vary greatly from user to user. Add to this the lack of visibility and correlation of inbound prompts with outbound responses and you have a serious security risk that could wipe away the business value AI aims to deliver.

Open access to AI applications and their models, whether available internally to restricted groups or externally to anyone, presents security risks. Users can craft their own prompts which could lead to a variety of attacks, manipulations, or inadvertent misuse. Examples of attacks or manipulations include model denial-of-service (DoS), prompt injection, sensitive information disclosure, and model theft. Sensitive information disclosure can be in the form of confidential company data or customer personal identifiable information (PII) which proves to be extremely damaging and can lead to lawsuits or loss of customer confidence. Furthermore, AI hallucinations can cause issues with employees and customers alike and readily consume expensive resources.

^{* Gartner’s Top Strategic Predictions for 2025 and Beyond: Riding the AI Whirlwind; October 21, 2024}

F5 AI Gateway is designed to secure and optimize access to AI applications while mitigating attacks and preventing exposure of critical information.

Protect against AI attacks

AI Gateway inspects, identifies, and blocks inbound attacks such as prompt injection, insecure output handling, model denial-of-service, sensitive information disclosure, and model theft. For outbound responses, AI Gateway identifies and scrubs PII data and prevents hallucinations. Software development kits (SDKs) enable additional enforcement of operational rules and compliance requirements for both prompts and responses to further align to operational needs.

Maximize AI-application performance and reduce costs

AI Gateway provides traffic routing and rate limiting for local and third-party large language models (LLMs) to maintain service availability and performance and control costs. The user experience is further enhanced by semantic caching which drives faster response time and reduces operational costs by removing duplicate tasks from LLMs.

Deploy AI security anywhere

AI Gateway is Kubernetes-based thereby making it deployable to public cloud, private cloud platforms, or on-premises data centers. Popular AI models such as OpenAI, Anthropic, Ollama, and generic HTTP upstream LLMs and small language model (SLM) services are supported.

Observability and audit trail for governance and compliance

OpenTelemetry support enables visibility on all metrics, logs, and traces of transactions and security events. It also delivers comprehensive metrics such as LLM/SLM token counts, request volumes, system resource utilization, and performance. For security compliance, AI Gateway configurations are readily available via export of audit data.