The security team said yes: How a $300B investment firm deployed Claude agents across the enterprise →

TRY AEMBIT
TALK TO AN ENGINEER
Blog

Author: Ashur Kanoon

MCP Server Access

Auditing MCP Server Access and Usage

AI agents exchange sensitive contexts across MCP servers in seconds. Without context-aware auditing, you can’t trace who accessed what.
Ashur Kanoon
May 2026
|
6 min read
What Is IAM for Agentic AI? The New Perimeter of Trust in 2026

What Is IAM for Agentic AI? The New Perimeter of Trust in 2026

Most CISOs fear AI agent risks, but legacy IAM can’t govern autonomous systems. A new identity model built on attestation is emerging.
Ashur Kanoon
Apr 2026
|
6 min read
SSOvFI

SSO vs. Federated Identity Management: A Guide

Managing digital identities for both human and nonhuman users is a central challenge for modern organizations spanning SaaS and clouds.
Ashur Kanoon
Apr 2026
|
6 min read
Introducing the Aembit MCP Server.

Analyze AI Agent Access: Introducing the Aembit MCP Server

Teams can query workload identity data in plain language, investigate activity, and move faster without leaving the Aembit platform.
Ashur Kanoon
Apr 2026
|
4 min read
API Keys vs. JWTs: Choosing the Right Auth Method for Your API

API Keys vs. JWTs: Choosing the Right Auth Method for Your API

Not all credentials are created equal. Compare API keys and JWTs across security, scalability, and fit for modern workload authentication.
Ashur Kanoon
Apr 2026
|
5 min read
moving beyond static credentials

Moving Beyond Static Credentials in Cloud-Native Environments

Static credentials were never built for cloud-native environments, and the gaps they leave behind are exactly what attackers count on.
Ashur Kanoon
Apr 2026
|
5 min read
Diagram showing IAM for agentic AI, where workloads use identity providers and short-lived credentials to securely access APIs, data platforms, and services.

Aembit IAM for Agentic AI Is Now Generally Available

Built in the open with customers, now ready to run against real agent workflows.
Ashur Kanoon
Apr 2026
|
5 min read
Attestation-based identity

​​Attestation-Based Identity: How It Works and Why It Matters

Attestation-based identity verifies workloads using cryptographic environment evidence rather than stored secrets. Learn how it works across hardware and cloud.
Ashur Kanoon
Apr 2026
|
8 min read
CI/CD

CI/CD Security Checklist: Eliminate Pipeline Secrets in 3 Weeks

CI/CD security checklist for DevSecOps teams. Eliminate pipeline secrets, secure dependencies and implement workload identity federation in 3 weeks.
Ashur Kanoon
Apr 2026
|
6 min read
JWT vs. OAuth

JWT vs. OAuth: Understanding Tokens and Authorization

OAuth is an authorization framework that defines how to grant access. JWT is a token format that defines how to package and transmit claims. They solve different problems, and most production systems use both.
Ashur Kanoon
Mar 2026
|
6 min read
Load More