Most Countries Won't Build Frontier AI: Here's Their Plan

Key Takeaways

• Frontier AI development is consolidating; most countries, outside the US and China, won't reach the cutting edge independently. Gavin Baker explains this will drive a distinct "sovereign AI" strategy for national defense.
• China's AI ambitions are being hampered by a critical misstep: relying on inferior domestic chips instead of sourcing more capable H200s or P30s, even when the US administration was willing to permit it.
• While Chinese labs excel at distillation (running frontier models through multiple APIs to learn), this advantage evaporates if frontier providers like OpenAI or Anthropic improve security around reasoning traces, making it harder to extract underlying logic.
• The gap in AI capabilities between the US and China is widening, largely due to China's self-imposed hardware limitations and the diminishing returns of distillation as frontier models secure their intellectual property.
• For nations not at the frontier, a practical approach exists: the "Sovereign AI Development Model for Non-Frontier Nations," which combines external foundational learning with secure, local deployment.

The Sovereign AI Development Model for Non-Frontier Nations

Gavin Baker argues that for the vast majority of countries, attempting to build frontier AI from scratch is a losing battle. Instead, they should adopt a pragmatic "sovereign AI" strategy focused on national defense, intelligence, and policing. He outlines a four-step model for these nations, allowing them to secure their data and values without needing to develop groundbreaking AI models themselves.

Here’s how it works:

• Leverage External Providers for Foundational RL: You use one of these providers to do some reinforcement learning on your language, your culture, your values.
• Implement System Prompts and Supervised Fine-Tuning: You have a system prompt. um you do some supervised fine-tuning
• Utilize Best Open Source Models: You run that on whatever the best open source model is.
• Deploy in Own Data Centers: And then you run it in your own data centers so you feel like you know it's safe and whatever defense questions you're asking it or whatever forget questions whatever defense and intelligence um and maybe um you know policing activities your sovereign AI agents are doing you know 24 hours a day. You feel like they're safe.

When This Works (and When It Doesn't)

This model is suitable for essentially all countries other than the United States and China, as sovereign AI at the frontier is deemed unattainable for most. It thrives where national security, cultural specificity, and data sovereignty are paramount, but the resources or expertise for true frontier research are lacking. For instance, a nation like Germany or Japan, which possesses advanced technical capabilities but isn't aiming for foundational model breakthroughs, can effectively deploy this strategy for their public sector needs.

However, this model breaks down if a nation believes it must achieve frontier AI independence, or if the "external providers" for foundational reinforcement learning (step one) become untrustworthy or impose unacceptable limitations. It also assumes that the best open-source models remain robust and capable enough for fine-tuning to meet specific national requirements, and that a country has the infrastructure to deploy and secure its own data centers effectively.

What to Do With This

If you're a founder building an AI product that might be sold to governments or highly regulated industries outside the US and China, this framework is your playbook for securing those contracts. Don't try to out-innovate OpenAI on foundation models. Instead, structure your offering to fit this "sovereign AI" demand. Tomorrow, map out how your product could fulfill each step for a prospective non-frontier national client. For example, if you're building an AI for a European defense contractor:

1. Leverage External Providers for Foundational RL: Partner with a trusted, established AI provider (like Microsoft Azure AI or Google Cloud AI, perhaps under a specific regulatory compliance framework) for the underlying broad capabilities. Use this for general language and reasoning, but never with the client's sensitive data.

2. Implement System Prompts and Supervised Fine-Tuning: Build a robust prompt engineering layer and fine-tuning pipeline your client controls. They'll define the system prompts based on their national security protocols, and use their own secured, proprietary data to fine-tune the model for local language, cultural nuances, and specific operational contexts.

3. Utilize Best Open Source Models: Your application should be designed to run on a hardened, locally deployed version of a leading open-source model (like Llama 3 or Mistral) rather than calling out to a third-party API for every inference. This gives the client full control over the model's behavior.

4. Deploy in Own Data Centers: Ensure your software is packaged for on-premises deployment within the client's air-gapped data centers. They need to feel 100% confident that their defense and intelligence queries, handled by your AI agents, are entirely secure and remain within their national borders. This is a non-negotiable for true "sovereign AI."