The security team said yes: How a $300B investment firm deployed Claude agents across the enterprise →

Get an Aembit Tenant
TALK TO AN ENGINEER
Blog

Author: Ashur Kanoon

A stressed software team reviews a crowded whiteboard labeled “DIY Architecture,” with diagrams, sticky notes, laptops, and papers showing the complexity of building access and identity controls in-house.

Aembit vs. DIY Workload Identity and Access: What Breaks at Scale

A working prototype can mask the harder problem: keeping every workload, agent, credential, policy, and audit trail consistent across production environments.
Ashur Kanoon
May 2026
|
10 min read
Split illustration showing chaotic tangled infrastructure on one side and a clean, structured cloud architecture diagram on the other.

Everyone Wants SPIFFE. Almost No One Can Afford to Build It Right.

What it takes to implement it, and why real-world environments make it hard to finish.
Ashur Kanoon
May 2026
|
16 min read
MCP Server Access

Auditing MCP Server Access and Usage

AI agents exchange sensitive contexts across MCP servers in seconds. Without context-aware auditing, you can’t trace who accessed what.
Ashur Kanoon
May 2026
|
6 min read
What Is IAM for Agentic AI? The New Perimeter of Trust in 2026

What Is IAM for Agentic AI? The New Perimeter of Trust in 2026

Most CISOs fear AI agent risks, but legacy IAM can’t govern autonomous systems. A new identity model built on attestation is emerging.
Ashur Kanoon
Apr 2026
|
6 min read
SSOvFI

SSO vs. Federated Identity Management: A Guide

Managing digital identities for both human and nonhuman users is a central challenge for modern organizations spanning SaaS and clouds.
Ashur Kanoon
Apr 2026
|
6 min read
Introducing the Aembit MCP Server.

Analyze AI Agent Access: Introducing the Aembit MCP Server

Teams can query workload identity data in plain language, investigate activity, and move faster without leaving the Aembit platform.
Ashur Kanoon
Apr 2026
|
4 min read
API Keys vs. JWTs: Choosing the Right Auth Method for Your API

API Keys vs. JWTs: Choosing the Right Auth Method for Your API

Not all credentials are created equal. Compare API keys and JWTs across security, scalability, and fit for modern workload authentication.
Ashur Kanoon
Apr 2026
|
5 min read
moving beyond static credentials

Moving Beyond Static Credentials in Cloud-Native Environments

Static credentials were never built for cloud-native environments, and the gaps they leave behind are exactly what attackers count on.
Ashur Kanoon
Apr 2026
|
5 min read
Diagram showing IAM for agentic AI, where workloads use identity providers and short-lived credentials to securely access APIs, data platforms, and services.

Aembit IAM for Agentic AI Is Now Generally Available

Built in the open with customers, now ready to run against real agent workflows.
Ashur Kanoon
Apr 2026
|
5 min read
Attestation-based identity

​​Attestation-Based Identity: How It Works and Why It Matters

Attestation-based identity verifies workloads using cryptographic environment evidence rather than stored secrets. Learn how it works across hardware and cloud.
Ashur Kanoon
Apr 2026
|
8 min read
Load More