AIMS: A Model for AI Agent Identity
4 min readAI agents are starting to look less like tools and more like participants. They don’t just respond to prompts. They take actions, call APIs, orchestrate workflows, and, in some cases, make decisions on behalf of users or other systems. As that shift happens, a fairly basic question moves ... Read More
Gartner’s Workload IAM Architecture Is a Big Step Forward for AI Agent Security
8 min readAI agents are often described as a new identity problem. That is true, but it is only half the story. Agents do introduce new behaviors. They can dynamically choose tools, chain actions together, call APIs, retrieve data, invoke MCP servers, and operate without a human approving every step ... Read More
MCP, OAuth 2.1, PKCE, and the Future of AI Authorization
6 min readThe MCP authorization spec sets a new standard for securing non-human AI agents – with lessons for anyone building autonomous, scalable systems. The post MCP, OAuth 2.1, PKCE, and the Future of AI Authorization appeared first on Aembit ... Read More
Self-Assembling AI and the Security Gaps It Leaves Behind
5 min readInstead of running static workflows, agents are building the system for you, deciding how to connect tools and take action on the fly. The post Self-Assembling AI and the Security Gaps It Leaves Behind appeared first on Aembit ... Read More
Why Scalability Matters in Non-Human Identity and Access Management
6 min readFrom dynamic workloads to API-driven systems, managing non-human identities requires a new approach to security at scale. The post Why Scalability Matters in Non-Human Identity and Access Management appeared first on Aembit ... Read More
Secure Workload Access in Minutes with Aembit’s New QuickStart Guide
3 min readThis step-by-step resource helps you deploy workloads, configure policies, and explore Aembit’s approach to securing non-human identities. The post Secure Workload Access in Minutes with Aembit’s New QuickStart Guide appeared first on Aembit ... Read More
How to Defend Non-Human Identities from Infostealers
4 min read The identity layer’s most insidious threat is now setting its sights on a different group of targets. Here's how to be ready. The post How to Defend Non-Human Identities from Infostealers appeared first on Aembit ... Read More
Key Takeaways on Nonhuman Identity Security from Gartner’s PAM Report
6 min readGartner's 2025 PAM Magic Quadrant names machines a core market concern. That shift changes the map for NHI security and workload IAM. The post Key Takeaways on Nonhuman Identity Security from Gartner’s PAM Report appeared first on Aembit ... Read More
An Open Letter to API Vendors: Embrace Secure Authentication Methods, Abandon API Keys
3 min read As the demand for API access continues to grow, so does the urgency of adopting more secure authentication methods. The post An Open Letter to API Vendors: Embrace Secure Authentication Methods, Abandon API Keys appeared first on Aembit ... Read More
Securing CI/CD Pipelines with Workload Identity Federation
6 min readPipeline breaches keep repeating because static credentials persist. Identity federation replaces stored secrets with runtime tokens. The post Securing CI/CD Pipelines with Workload Identity Federation appeared first on Aembit ... Read More
