About Us
Our Mission
BlueUP was founded with a clear objective: to build the trust infrastructure that enables regulated organizations to adopt agentic AI without compromising security, compliance, or data sovereignty.
We're not another cybersecurity product. We're the identity, governance, and compliance layer that makes it possible for banks, insurers, and fintech to deploy autonomous AI agents securely and in compliance.
The Problem We Solve
Agentic AI has changed the rules. Autonomous agents act at machine speed, but the infrastructure connecting them was designed for humans. Regulated entities face unprecedented pressure:
| Challenge | Impact |
|---|---|
| AI without governance | Agents process sensitive data, invoke tools, and make decisions without adequate controls |
| Growing regulation | DORA, AML, AI Act, GDPR demand controls that traditional infrastructure can't deliver |
| Obsolete perimeters | VPNs and firewalls grant access to the entire network: AI shortens the path from exposure to impact |
| "Connectivity tax" | Each new agent requires coordinating NAT, firewalls, VLANs, and approvals, slowing innovation |
Our Approach: Identity-First
Fundamental principle
Without a valid cryptographic identity, no data path exists. Services are dark by default. Identity and policy decide whether a connection can exist.
Three design pillars:
- Identity as Perimeter — Security doesn't depend on server location, but on the verifiable cryptographic identity of every human, agent, and machine.
- Dynamic Privileges — AI proposes actions, but governance policies and human intervention act as intelligent security brakes.
- Minimum Blast Radius — Granular isolation (Cilium + Sandbox de Google que provee aislamiento a nivel de kernel por agente y servicio. En BlueUP se usa para limitar el blast radius de cada componente. Leer más → gVisor) ensures a compromise in one component never translates to a systemic breach.
Integrated Platform
BlueUP isn't standalone products: it's a three-layer platform where each layer reinforces the others.
Layer 1: Zero Trust Reachability
Identity-first connectivity on Sustrato de conectividad open-source de NetFoundry: túneles cifrados, servicios dark sin IP pública, política de servicio identity-first. Leer más → OpenZiti/Empresa creadora de OpenZiti, respaldada por Cisco Investments. BlueUP es partner oficial: ofrece despliegue self-hosted y conectividad managed sobre su plataforma. Leer más → NetFoundry. Dark services by default. BlueUP Connect desktop client. → View BlueUP Connect
Layer 2: Compliance & Governance
BlueUPALM (banking-grade Anti-Money Laundering: prevención de blanqueo de capitales. Consume 5-10% del presupuesto operativo de una entidad media; los sistemas tradicionales generan >95% falsos positivos. Leer más → AML/Digital Operational Resilience Act: reglamento UE 2022/2554 sobre resiliencia operativa digital. Exige a entidades financieras de la UE resistir, responder y recuperarse de incidentes TIC. En vigor desde 17 enero 2025. Leer más → DORA) + ComplianceView (96 controls, continuous monitoring). → View BlueUPALM | View ComplianceView
Layer 3: Sovereign Execution
Rust financial engine (162k journals/sec) + Model Context Protocol: en BlueUP, el Gateway MCP gobierna qué herramientas pueden invocar los agentes de IA, por identidad y política. Leer más → MCP/LLM Gateways for tool and AI model governance. → View Technology
Technology Partner: NetFoundry
Our Zero Trust connectivity substrate is built on OpenZiti, the open-source platform developed by NetFoundry. As official partners, we offer both self-hosted deployment and managed connectivity.
NetFoundry is backed by investors including Cisco Investments and partners like Stellar Cyber and Intrusion.
Technology Stack
We work with cutting-edge technologies selected for their robustness in critical environments:
| Layer | Technologies |
|---|---|
| Frontend | React, TypeScript |
| Backend | Rust (ultra-low latency), Python (AI orchestration) |
| Security | OpenZiti (Zero Trust), Keycloak (identity), Biscuit Tokens (offline authorization) |
| AI & Data | Vertex AI, vLLM, PostgreSQL, NATS JetStream |
| Infrastructure | Google Cloud, Kubernetes (Talos Linux), Terraform, Gitea Actions |
Contact
Does your organization need Zero Trust infrastructure for agentic AI, AML/DORA compliance, or VPN-free access?