The security team said yes: How a $300B investment firm deployed Claude agents across the enterprise →

TRY AEMBIT
TALK TO AN ENGINEER
Blog

Category: Best Practices

Workforce Agents vs Customer Agents: A Complete Guide

Workforce Agents vs. Customer Agents: Identity, Access, and Security Explained

Workforce and customer agents may rely on similar identity infrastructure, but the trust models, access patterns, and security risks behind them differ significantly.
Dan Kaplan
May 2026
|
9 min read
MCP Server Access

Auditing MCP Server Access and Usage

AI agents exchange sensitive contexts across MCP servers in seconds. Without context-aware auditing, you can’t trace who accessed what.
Ashur Kanoon
May 2026
|
6 min read
Non-Human Identity Management vs. Machine Identity vs. Workload IAM

Non-Human Identity Management vs. Machine Identity vs. Workload IAM

NHIM, MIM, and workload IAM each address a different layer of non-human identity security. Learn how they compare and complement each other.
Apurva Davé
Apr 2026
|
6 min read
5 Secrets Manager Alternatives for Securing Non-Human Identities

5 Secrets Manager Alternatives for Securing Non-Human Identities

Secrets managers store credentials but can’t close the access gaps that multicloud workloads and AI agents create. Five alternatives can.
Dan Kaplan
Apr 2026
|
6 min read
MCP Permission Models: Designing Secure Interactions

MCP Permission Models: Designing Secure Interactions

MCP standardizes how AI agents connect to tools, but every agent needs delegated authority and precise permission controls to match.
Apurva Davé
Apr 2026
|
6 min read
Dynamic Authorization vs Static Secrets: Rethinking Cloud Access Controls

Dynamic Authorization vs. Static Secrets: Rethinking Cloud Access Controls

Hardcoded credentials and shared tokens give attackers ongoing access. Dynamic authorization replaces them with real-time decisions.
Dan Kaplan
Apr 2026
|
6 min read
Workload IAM vs. API Security

Workload IAM vs. API Security

Two layers protect cloud-native apps: Workload IAM secures machine identity and API security inspects request traffic. Most teams need both.
Dan Kaplan
Apr 2026
|
5 min read
MCP Security Testing: Tools and Methodologies

MCP Security Testing: Tools and Methodologies

Test your MCP systems for confused deputy attacks, token passthrough risks and the authorization patterns the specification requires.
Apurva Davé
Apr 2026
|
6 min read
encryption keys vs access keys

Managing Encryption Keys vs. Access Keys

Modern infrastructure depends on keys: encryption and access. They’re not the same, and treating them the same quietly introduces risk.
Dan Kaplan
Apr 2026
|
6 min read
Connected workloads

8 Workload Authentication Methods for Nonhuman Identities

Every workload that calls an API has to prove it belongs. How that proof gets exchanged shapes the blast radius of any credential leak.
Victor Ronin
Apr 2026
|
7 min read
Load More