New independent research: Most enterprises aren’t fully ready to secure autonomous AI agents →

TRY AEMBIT
TALK TO AN ENGINEER
Blog
Blog
Blog
X

Blog

Author: Dan Kaplan

encryption keys vs access keys

Managing Encryption Keys vs. Access Keys

Modern infrastructure depends on keys: encryption and access. They’re not the same, and treating them the same quietly introduces risk.
Dan Kaplan
Apr 2026
|
6 min read
Credentials insights from Verizon DBIR Report

Credential and Secrets Theft: Insights from the 2025 Verizon Data Breach Report

Stolen credentials remain the most common way attackers get in. The 2025 Verizon Data Breach Investigations Report, covering more than 22,000 security incidents and 12,000 confirmed breaches, makes the case plainly: credential abuse was the leading initial access vector for the second consecutive year.
Dan Kaplan
Apr 2026
|
5 min read
Workload identity vs. workload access management

Workload Identity vs. Workload Access Management: Securing Cloud-Native Workloads in a Dynamic Environment

Workload identity proves who a workload is. Workload access management controls what it can do. Learn why separating them is critical for zero trust.
Dan Kaplan
Apr 2026
|
5 min read
human identity vs non human identity

How to Distinguish Between Human and Nonhuman Identities

Two in five SaaS platforms fail to distinguish human from nonhuman identities. Learn why the distinction matters and how to manage both securely.
Dan Kaplan
Apr 2026
|
5 min read
What Identity Federation Means for Workloads

What Identity Federation Means for Workloads in Cloud-Native Environments

Instead of duplicating accounts or sharing credentials, one identity system can validate identities issued by another and grant access based on that trust.
Dan Kaplan
Mar 2026
|
6 min read
The What, Where, and Why of Workload Identity and Access Management header image with cloud and network patterns

Workload Identity and Access Management: The Definitive Guide

For every human identity your IAM program governs, there are roughly 82 machine identities operating outside it. Most of them authenticate with static credentials that were provisioned once and never reviewed.
Dan Kaplan
Mar 2026
|
6 min read
Workload IAM vs. Secrets Managers header image with person keeping a secret

Workload IAM vs. Secrets Management: A Practical Decision Guide

Most organizations start their nonhuman identity security program with a secrets manager. It’s a sensible first step. But as workloads multiply across clouds and the credential sprawl grows, the question shifts from “where do we store secrets?” to “do we need secrets at all?”
Dan Kaplan
Mar 2026
|
6 min read
Claude Code external UI.

Anthropic’s AI-Run Attack and What It Means for Agentic Identity

Anthropic’s disclosure of an AI-driven espionage campaign it halted is best understood as a faster, more persistent version of patterns the industry has seen before. What distinguishes this incident is the continuity of activity an autonomous system can sustain once it is given the ability to interpret its surroundings and act on that understanding.
Dan Kaplan
Mar 2026
|
6 min read
Identity and Access Gaps in the Age of Autonomous AI

Introducing the Identity and Access Gaps in the Age of Autonomous AI Survey Report

Based on responses from more than 200 enterprises, the findings show how AI agents are reshaping identity attribution and access control in ways existing models were not designed to handle.
Dan Kaplan
Mar 2026
|
2 min read
Zero Trust 2026

Zero-Trust Architecture: How to Move From Network Security to Identity-First Access

Zero-trust architecture is a security framework built on a simple premise: no user, device or workload should be trusted by default, regardless of where it sits on the network.
Dan Kaplan
Mar 2026
|
5 min read
Load More