The security team said yes: How a $300B deployed Claude agents across the enterprise →

TRY AEMBIT
TALK TO AN ENGINEER
Blog

Tag: MCP

claude secured by aembit with david goldschlag

Every Employee is Getting an AI Assistant, But Is Security Infrastructure Ready?

When enterprises deploy Claude for Work, every agent inherits the employee’s full identity and access rights with no guardrails, no policy, and no audit trail. Here’s how one $300B investment firm closed that gap, and what it means for yours.
David Goldschlag
Apr 2026
|
2 min read
How to Build an MCP Server — and What to Do Before You Ship It

How To Create an MCP Server To Connect Your App With LLMs

You can stand up an MCP server in minutes, but controlling how it authenticates and what it can access is where the real work begins.
Aembit Engineering
Apr 2026
|
8 min read
Introducing the Aembit MCP Server.

Analyze AI Agent Access: Introducing the Aembit MCP Server

Teams can query workload identity data in plain language, investigate activity, and move faster without leaving the Aembit platform.
Ashur Kanoon
Apr 2026
|
4 min read
Diagram showing IAM for agentic AI, where workloads use identity providers and short-lived credentials to securely access APIs, data platforms, and services.

Aembit IAM for Agentic AI Is Now Generally Available

Built in the open with customers, now ready to run against real agent workflows.
Ashur Kanoon
Apr 2026
|
5 min read
Split-screen image: on the left, a person types commands into a dark terminal window; on the right, a person interacts with a glowing, abstract API network interface representing connected services.

MCP or CLI? How to Choose Right Interface for Your AI Tools

What starts as a tooling decision ends up shaping cost, reliability, and how far your workflows actually scale before they break down.
Holden Hewett
Apr 2026
|
4 min read
The Ultimate Guide to MCP Security Vulnerabilities

The Ultimate Guide to MCP Security Vulnerabilities

SPIFFE focuses on who a workload is. It issues cryptographic identities to services and workloads so they can prove their authenticity to each other without relying on stored secrets. OAuth focuses on what a workload is allowed to do. It defines how access is delegated and controlled when one service needs to interact with another or call an external API.
Ashur Kanoon
Mar 2026
|
7 min read
MCP Servers being used in corporate SOC.

MCP Servers and the Return of the Service Account Problem

As agents scale and operate continuously, MCP servers are becoming long-lived access intermediaries, concentrating privilege in ways security teams have already struggled to contain.
Dan Kaplan
Mar 2026
|
3 min read
MCP vs Traditional API Security

MCP vs. Traditional API Security: Key Differences

Securing MCP requires a fundamentally different approach than traditional API security.
Apurva Davé
Dec 2025
|
6 min read
CBAC for MCP Servers

Context-Based Access Control for MCP Servers: Why Static Rules Fail in Dynamic Environments

Traditional static access control is inadequate for dynamic MCP server environments. Context-Based Access Control (CBAC) provides superior security by evaluating identity, context, and resource in real-time.
Dan Kaplan
Dec 2025
|
6 min read
MCP Server Communications

Securing MCP Server Communications: Beyond Authentication

Securing MCP servers requires rethinking the entire communication stack, not just adding TLS and calling it done.
Ashur Kanoon
Nov 2025
|
6 min read