Check Point releases reference architecture for securing private AI infrastructure

Check Point Software Technologies has released its AI Factory Security Architecture Blueprint, a vendor-tested reference architecture for securing private AI infrastructure from the hardware layer to the application layer.

The solution leverages Check Point’s firewall and AI security technologies and builds on NVIDIA BlueField data processing capabilities, aiming to deliver security-by-design across every layer of the AI factory and data centre.

The Blueprint delivers layered protection at four levels, the company said.

With the perimeter layer, Check Point Maestro Hyperscale Firewall provides zero trust network access, along with virtual security group segmentation and scalable policy enforcement at the entry point to the AI fabric, handling north-south traffic from external users, internet sites, and enterprise networks.                                                 

At the application and LLM layer, Check Point AI Agent Security defends inference APIs and LLM endpoints against prompt injection, data exfiltration, adversarial queries and API abuse. Check Point AI Agent Security is integrated into Check Point Firewalls across cloud, virtual and appliance form factors, Check Point WAF, and Check Point AI Factory.

The AI infrastructure layer embeds Check Point’s firewall and threat prevention directly into NVIDIA BlueField data processing units via the NVIDIA DOCA software platform.

This delivers hardwar- accelerated, inline security at the infrastructure level, as well as high--performance AI prompt defence and inspection of ingress and egress traffic without consuming CPU/GPU cycles, protecting NVIDIA compute servers, segmenting tenants, and enabling runtime threat detection through DOCA Argus on BlueField.

The fourth layer applies to workloads and containers, where Check Point’s integration with third party micro segmentation solutions enables micro-segmentation and east-west traffic control within Kubernetes clusters, preventing lateral movement between inference namespaces and isolating compromised containers before they can propagate.

The Blueprint also maps directly to AI governance frameworks including the NIST AI Risk Management Framework and Gartner AI TRiSM, providing the traceability, auditability, and policy enforcement required to meet emerging regulations including the EU AI Act, GDPR, HIPAA, PCI-DSS, and ISO 42001, the company claimed.

"AI infrastructure has become one of the most valuable and vulnerable assets in the enterprise,” said Nataly Kremer, chief product officer at Check Point.

“The AI Factory Security Blueprint is how we help organisations protect those investments — not as an afterthought, but from the ground up, through every layer of the stack."