Industry Insights
Inside IETF Bangkok: Shaping the Future of Workload Identity and Access Management
4 min readHow my week went exploring the emerging WIMSE standard and the meticulous work shaping secure, cross-domain workload interactions. The post Inside IETF Bangkok: Shaping the Future of Workload Identity and ...
OWASP’s Top Security Risks for Non-Human Identities and How to Address Them
5 min readWe deep dive into the first-ever NHI threat list – exploring each risk, real-world breaches that prove the threat is real, and how to defend against them. The post OWASP’s ...
7 Stages of Non-Human Identity Security Maturity
6 min readNon-human identity security isn’t one-size-fits-all. Where does your organization stand on the path to eliminating secrets and securing workload access? The post 7 Stages of Non-Human Identity Security Maturity appeared ...
Non-Human Identity Security vs. Service Account Management: What’s the Difference?
3 min readIf you think non-human identity security is just service account management in disguise, you might be missing the bigger picture. The post Non-Human Identity Security vs. Service Account Management: What’s ...
How I Used Free Tools to Resource Jack API Keys
4 min readHackers don’t need elite skills to steal your cloud resources – just free tools, public code, and a little patience. The post How I Used Free Tools to Resource Jack ...
What Makes You… You? A Philosophical Take on Non-Human Identity
6 min readFrom DNA to data, explore the unanswered questions of identity and the challenges of securing a non-human world. The post What Makes You… You? A Philosophical Take on Non-Human Identity ...
Secrets Management vs. Access Management: What You Need to Know
3 min readThe distinction is stark: One stores credentials for non-human identities while the other enforces real-time policies to control access. The post Secrets Management vs. Access Management: What You Need to ...
Preventing Stale Non-Human Identity Security: Lessons from the Schneider Electric Breach
3 min readA ransom demand in baguettes exposed poor practices related to a hijacking of the company's internal systems. The post Preventing Stale Non-Human Identity Security: Lessons from the Schneider Electric Breach ...
Beyond Secrets Managers: 5 Alternatives for Securing Non-Human Identities
5 min read Secrets managers offer value, but alternatives can help better secure non-human identities in complex, multi-cloud environments. The post Beyond Secrets Managers: 5 Alternatives for Securing Non-Human Identities appeared first ...
5 Security Considerations for Managing AI Agents and Their Identities
5 min read Balancing non-human IAM for access – and governance for oversight – is key to ensuring security, compliance, and accountability in managing these next-generation systems. The post 5 Security Considerations ...
