Topic archive
Security
10 items grouped under this topic.
Posts
10 matching essays
December 1st, 2025
210
10 mins
MCP Enterprise Readiness: How the 2025-11-25 Spec Closes the Production Gap
MCP
Enterprise AI
Agentic AI
Security
OAuth
Authentication
Infrastructure
Agent Ops
Governance
Enterprise Integration
The Model Context Protocol's first anniversary release isn't just a milestone—it's a strategic inflection point. With asynchronous Tasks, enterprise-grade OAuth, and a formal extensions framework, the 2025-11-25 spec directly addresses the operational barriers that have kept organizations from deploying agent-tool ecosystems at scale. This post examines how these new primitives transform MCP from a development convenience into production-grade infrastructure.
Continue reading
November 20th, 2025
272
9 mins
The Governance Stack: Operationalizing AI Agent Governance at Enterprise Scale
AI
Agents
Agentic AI
Governance
Enterprise AI
Agent Ops
MCP
Security
Infrastructure
Compliance
AI Management
With 88% of organizations now deploying AI agents in production, governance has shifted from a theoretical concern to an operational imperative. Yet 40% of technology executives admit their governance programs are insufficient. This article presents the technical infrastructure—the 'governance stack'—required to transform governance frameworks from policy documents into automated, enforceable reality across the entire agentic workforce lifecycle.
Continue reading
November 17th, 2025
7 mins
Why Private Registries are the Future of Enterprise Agentic Infrastructure
AI
Agents
Agentic AI
MCP
Agent Registry
Enterprise AI
Governance
Security
Infrastructure
Private Registry
AI Management
With 79% of companies already adopting AI agents, a critical governance gap has emerged. Without robust management frameworks, organizations risk a chaotic landscape of shadow AI, creating significant security vulnerabilities and operational inefficiencies. The solution lies in Private Agent and MCP Registries—command centers for agentic infrastructure that provide the visibility, governance, and security necessary to scale AI responsibly.
Continue reading
November 14th, 2025
5 mins
From Espionage to Identity: Securing the Future of Agentic AI
AI
Security
Agentic AI
OIDC-A
MCP
Anthropic
Claude
Cybersecurity
AI Agents
Identity Management
Zero Trust
Anthropic has detailed its disruption of the first publicly reported cyber espionage campaign orchestrated by a sophisticated AI agent. The incident, attributed to state-sponsored group GTG-1002, signals that the age of autonomous, agentic AI threats is here. This post dissects the anatomy of the attack and explores how emerging standards like OpenID Connect for Agents (OIDC-A) provide a necessary path forward.
Continue reading
July 15th, 2025
3 mins
Do Agents Need Their Own Identity?
As AI agents become more sophisticated and autonomous, a fundamental question is emerging: should agents operate under user credentials, or do they need their own distinct identities? This isn't just a technical curiosity—it's a critical trust and security decision that will shape how we build reliable, accountable AI systems.
Continue reading
July 1st, 2025
168
3 mins
Securing AI Assistants: Why Your Favorite Apps Need Digital IDs for Their AI
As AI assistants on platforms like Instagram, Facebook, and Booking.com become more autonomous, they need proper digital identities to securely act on our behalf. Learn how AI identity systems work and why they matter for consumer platforms.
Continue reading
June 21st, 2025
330
3 mins
From Gateway to Guardian: The Evolution of MCP Security
While AWS's MCP Gateway solves operational challenges, production AI systems demand evolution from basic centralization to identity-aware security guardians that address the "lethal trifecta" of vulnerabilities in enterprise deployments.
Continue reading
May 21st, 2025
1265
29 mins
Securing MCP with OIDC & OIDC-A: Identity-Aware API Gateways Beyond "Glorified API Calls"
Integrating OpenID Connect (OIDC) and the new OIDC-A agent extension with an identity-aware API gateway to securely authenticate users, LLM agents, and MCP tools—going far beyond basic API proxying.
Continue reading
April 28th, 2025
2613
7 mins
OpenID Connect for Agents (OIDC-A) 1.0 Proposal
OpenID
OAuth
AI
Agents
Security
Identity
Authentication
Authorization
Standards
Proposal
Specification
Technical proposal for extending OpenID Connect Core 1.0 to provide a framework for representing, authenticating, and authorizing LLM-based agents within the OAuth 2.0 ecosystem.
Continue reading
December 10th, 2024
219
3 mins
AI Agents and Agentic Security: The Next Frontier in Enterprise Automation
Exploring the potential of AI agents in enterprise security and automation, and how they can enhance security operations.
Continue reading