Meet Aembit IAM for Agentic AI. See what’s possible →

TRY AEMBIT

Blog

Industry Insights

Context-Based Access Control for MCP Servers: Why Static Rules Fail in Dynamic Environments

Dan Kaplan Dec 2025 | 6 min read
CBAC for MCP Servers

6 min readDiscover why traditional static access control is inadequate for dynamic MCP server environments and how Context-Based Access Control (CBAC) provides superior security by evaluating identity, context, and resource in real-time.

Traditional static access control is inadequate for dynamic MCP server environments. Context-Based Access Control (CBAC) provides superior security by evaluating identity, context, and resource in real-time.
Dig in
Product Updates

Announcing Aembit IAM for Agentic AI

Apurva Davé Oct 2025 | 7 min read
Best Practices

Securing AI Agents and LLM Workflows Without Secrets

Ashur Kanoon Sep 2025 | 10 min read
Resources

The Definitive Catch-Up Guide to Agentic AI Authentication

Victor Ronin Jul 2025 | 11 min read

Discover More of What Matters to You

Recent Stories

OAuth 2.0 vs 2.1

OAuth 2.0 vs 2.1: What’s Changed and Why It Matters for Developers

OAuth 2.1 eliminates implicit flow, mandates PKCE, and requires exact redirect matching.
Ashur Kanoon
Dec 2025
|
5 min read
JWT vs. OAuth

JWT vs. OAuth: Understanding the Roles of Tokens and Authorization

JWT and OAuth work together for robust authorization, especially in machine-to-machine communication.
Ashur Kanoon
Dec 2025
|
6 min read
CI/CD

The CI/CD Supply Chain Security Checklist (That Your Dev Team Will Actually Use)

Eliminate pipeline secrets, secure dependencies, and implement workload identity federation in 3 weeks.
Ashur Kanoon
Dec 2025
|
6 min read
What is Agentic AI

What Exactly Is Agentic AI (and Why It Matters Now)

Agentic AI systems act autonomously to achieve goals, planning multi-step tasks and adapting to changing conditions.
Apurva Davé
Nov 2025
|
5 min read
service accounts

The Real Risk Behind Service Accounts (And Why Nobody’s Watching Them) 

Service accounts outnumber human users but operate with static credentials and minimal oversight.
Apurva Davé
Nov 2025
|
6 min read
A blurred software error message on a computer screen showing an exception response with a visible token value.

CrewAI GitHub Token Exposure Highlights the Growing Risk of Static Credentials in AI Systems

The exposure demonstrates how ordinary errors can reveal internal credentials and how stronger limits on scope and lifespan can contain the impact.
Dan Kaplan
Nov 2025
|
3 min read
Claude Code external UI.

Anthropic Disruption of an AI-Run Attack and What It Means for Agentic Identity

The incident demonstrates how autonomous behavior reshapes intrusion patterns when identity is not clearly assigned or enforced.
Dan Kaplan
Nov 2025
|
4 min read
AI agent architectures

The 4 Most Common AI Agent Deployment Patterns And What They Mean for Identity Security

These four architectural patterns reveal how AI agents differ fundamentally from traditional workloads.
Dan Kaplan
Nov 2025
|
6 min read
JIT Access for Wordkloads

Just-in-Time Access for Workloads: Eliminating Standing Privileges

JIT access replaces the common practice of issuing and locally storing keys with a workflow that evaluates a workload’s rights every time it tries to access sensitive data.
Apurva Davé
Nov 2025
|
7 min read
MCP Server Communications

Securing MCP Server Communications: Beyond Authentication

Securing MCP servers requires rethinking the entire communication stack, not just adding TLS and calling it done.
Ashur Kanoon
Nov 2025
|
6 min read
Renee Guttmann joins Aembit as adviser.

Veteran CISO and Aembit Adviser Renee Guttmann on Guiding Security into the AI Age

From Coca-Cola to Campbell Soup, Renee Guttmann knows what lasts as security changes.
Dan Kaplan
Nov 2025
|
4 min read
Agentic AI Needs Guardrails

Why Agentic AI Needs Guardrails to Thrive

The organizations succeeding with agentic AI are deploying it with constraints.
Dan Kaplan
Nov 2025
|
5 min read
Load More

Ready to Try Workload IAM?

Get started in minutes, with no sales calls required. Our free- forever tier is just a click away.

Request a Demo