TRY AEMBIT

Blog

Best Practices

MCP, OAuth 2.1, PKCE, and the Future of AI Authorization

Kevin Sapp May 2025 | 6 min read
MCP OAuth 21 PKCE and the future of AI authorization

6 min readThe MCP authorization spec sets a new standard for securing non-human AI agents – with lessons for anyone building autonomous, scalable systems.

Dig in
Industry Insights

Self-Assembling AI and the Security Gaps It Leaves Behind

Kevin Sapp May 2025 | 5 min read
Product Updates

Introducing One Security Token Service for All Your Clouds

Apurva Davé Apr 2025 | 7 min read
Breach Analysis

5 Non-Human Identity Breaches That Workload IAM Could Have Prevented

Dan Kaplan Apr 2025 | 5 min read

Discover More of What Matters to You

Recent Stories

Dev, DevOps, Security Cooperation

How to Unite Developers, DevOps, and Security Without Slowing Down

Builders and protectors don’t have to clash – they just need a common path.
Dan Kaplan
May 2025
|
5 min read
Human brain and AI brain

Self-Assembling AI and the Security Gaps It Leaves Behind

Instead of running static workflows, agents are building the system for you, deciding how to connect tools and take action on the fly.
Kevin Sapp
May 2025
|
5 min read
Aembit federating with all clouds.

Introducing One Security Token Service for All Your Clouds

Securing non-human access should be easier – but federation is fragmented, manual, and brittle. We built a better way to do it across clouds.
Apurva Davé
Apr 2025
|
7 min read
Human interacting with machine.

How to Enable Filesystem Support in Model Context Protocol (MCP)

This tutorial shows how to connect Claude to your macOS filesystem so it can read, write, and do useful things with your data.
Ashur Kanoon
Apr 2025
|
2 min read
KuppingerCole names Aembit a Rising Star.

KuppingerCole Names Aembit a “Rising Star” for Non-Human IAM

As machine-to-machine communication eclipses human access, Aembit's secretless approach to non-human identity is gaining industry recognition.
Dan Kaplan
Apr 2025
|
2 min read
Bangkok city scape.

Inside IETF Bangkok: Shaping the Future of Workload Identity and Access Management

How my week went exploring the emerging WIMSE standard and the meticulous work shaping secure, cross-domain workload interactions.
Andrew McCormick
Apr 2025
|
4 min read
Workload to workload breach prevention.

5 Non-Human Identity Breaches That Workload IAM Could Have Prevented

Each breach exploited a gap in how workloads authenticate and access resources.
Dan Kaplan
Apr 2025
|
5 min read
Aembit Adds Azure Entra ID Support with screenshot.

Aembit Introduces Microsoft Azure Entra ID Workload Identity Federation (WIF) Support

Non-human identities can now access Azure resources securely, without hardcoded credentials or custom code.
Ashur Kanoon
Mar 2025
|
5 min read
Image of back of developer working at three computers.

GitHub Action tjactions/changed-files Supply Chain Breach Exposes NHI Risks in CI/CD

Long-lived credentials and secrets fueled the attack.
Dan Kaplan
Mar 2025
|
4 min read

How to Stop Expired Secrets from Disrupting Your Operations

Credential expiration is more than an SSL/TLS certificate problem.
Dan Kaplan
Mar 2025
|
5 min read
Words stating Aembit achieves ISO 27001 certification.

Aembit Achieves ISO 27001 Certification

Hot on the heels of our SOC 2 Type II certification – Aembit has now achieved ISO 27001, demonstrating our unwavering commitment to resilience and compliance.
Ashur Kanoon
Mar 2025
|
3 min read
Open physical lock sitting on a laptop keyboard.

OWASP’s Top Security Risks for Non-Human Identities and How to Address Them

We deep dive into the first-ever NHI threat list – exploring each risk, real-world breaches that prove the threat is real, and how to defend against them.
Dan Kaplan
Mar 2025
|
5 min read
Load More

Ready to Try Workload IAM?

Get started in minutes, with no sales calls required. Our free- forever tier is just a click away.

Request a Demo