
Identity: The operational control plane for agentic AI
Existing security controls weren’t designed for AI agents.
Static credentials and standing privileges aren’t sufficient for an emerging model where organizations need to rapidly authorize, limit, and revoke permissions from autonomous agents, sometimes more than once within a single workflow.
Agentic AI requires organizations to carefully consider how to govern agentic identity, agent-to-agent communication, secrets management, privileged access, and workforce identity.
Agentic identity
The first challenge is to establish a reliable identity for agents themselves.
The “how” here is still being hotly debated. Some organizations treat AI agents as another form of non-human identity, similar to...