Introduction

Koreshield is an enterprise-grade security middleware designed to protect LLM applications from prompt injection, data exfiltration, and operational abuse. It functions as an intelligent firewall between your application and LLM providers (e.g., OpenAI, Anthropic, Gemini ).

Kore Value

Koreshield ensures that your LLM applications remain secure, compliant, and reliable by sanitizing inputs and validating outputs in real-time.

The Security Challenge

Integrating LLMs into production environments introduces novel attack vectors that traditional WAFs cannot detect:

Prompt Injection: Malicious actors manipulating the model's instructions to bypass safety guardrails.
Indirect Injection (RAG): Compromised external data (emails, documents) hijacking the model's context.
Data Leakage: Unintentional exposure of PII (Personally Identifiable Information) or proprietary secrets.
Denial of Service: Resource exhaustion attacks targeting expensive LLM tokens.

How Koreshield Works

Koreshield operates as a transparent proxy. It intercepts API requests, performs deep security analysis, and enforces your organization's security policies before the request reaches the model provider.

Defense-in-Depth

Heuristic Analysis: Detects known attack patterns and jailbreak attempts.
LLM-based Evaluation: Uses specialized small models to identify semantic threats.
RAG Security: Scans retrieved documents for hidden instructions ("context poisoning").

Performance First

Sub-millisecond Latency: Optimized Go/Python engine for minimal overhead.
Streaming Support: Full support for Server-Sent Events (SSE) and token streaming.
High Throughput: Horizontally scalable architecture designed for high-volume workloads.

Universal Compatibility

Provider Agnostic: Unified API for OpenAI, Anthropic, DeepSeek, and local models.
SDK Support: Native clients for Python and TypeScript/JavaScript.
Framework Integrations: seamlessly integrates with LangChain, LlamaIndex, and Vercel AI SDK.

Next Steps

Installation Guide: Deploy your first instance in under 5 minutes.
RAG Defense: Learn how to secure your retrieval pipelines.
API Reference: Explore the programmable security interface.

Next: Installation →

The Security Challenge​

How Koreshield Works​

Defense-in-Depth​

Performance First​

Universal Compatibility​

Next Steps​