Meet Aembit IAM for Agentic AI. See what’s possible →

TRY AEMBIT
TALK TO AN ENGINEER
Blog
Blog
Blog
X

Blog

Tag: Workload Identity

SSOvFI

SSO vs. Federated Identity Management: A Guide

Single sign-on (SSO) simplifies access for human users across an organization’s approved applications. Federated identity (FI) management connects users across organizational boundaries.
Ashur Kanoon
Jan 2026
|
5 min read
Service Accounts

What Are Service Accounts and Why Are They a Security Risk?

Service accounts are indispensable, but their security weaknesses make them the most attractive target in enterprise environments.
Ashur Kanoon
Jan 2026
|
6 min read
Catching Rogue Workloads and AI Agents

Anomaly Detection for Non-Human Identities: Catching Rogue Workloads and AI Agents

Traditional security models fail to detect compromised service accounts and non-deterministic AI agents, requiring a shift to layered, identity-aware behavioral monitoring.
Dan Kaplan
Jan 2026
|
8 min read
Aembit engineer Sebastian working on computers while looking at camera.

When the Vendor Becomes the Customer: Building Internal Tools on an Agentic IAM Platform

A project to improve test visibility meant using Aembit the same way customers do, in a real deployment environment where software runs unattended and requires trusted access to external services.
Dan Kaplan
Jan 2026
|
4 min read
Zero Trust 2026

Identity Over Network: Why 2026 Zero Trust Is About Who/What, Not Where

True zero trust requires verified identity at every request and eliminating static credentials entirely.
Dan Kaplan
Dec 2025
|
5 min read
Jenkins logo.

Aembit Adds Jenkins CI/CD Support

This update gives every Jenkins job a real identity and automated short-lived access so teams can retire static secrets without changing how their pipelines run.
Ashur Kanoon
Dec 2025
|
4 min read
A blurred software error message on a computer screen showing an exception response with a visible token value.

CrewAI GitHub Token Exposure Highlights the Growing Risk of Static Credentials in AI Systems

The exposure demonstrates how ordinary errors can reveal internal credentials and how stronger limits on scope and lifespan can contain the impact.
Dan Kaplan
Nov 2025
|
3 min read
Claude Code external UI.

Anthropic Disruption of an AI-Run Attack and What It Means for Agentic Identity

The incident demonstrates how autonomous behavior reshapes intrusion patterns when identity is not clearly assigned or enforced.
Dan Kaplan
Nov 2025
|
4 min read
MCP Server Communications

Securing MCP Server Communications: Beyond Authentication

Securing MCP servers requires rethinking the entire communication stack, not just adding TLS and calling it done.
Ashur Kanoon
Nov 2025
|
6 min read
Attestation-based identity

​​Attestation-Based Identity: How It Works and Why It Matters

Instead of just trusting the token’s signature, attestation-based identity adds an extra layer of security.
Ashur Kanoon
Oct 2025
|
7 min read
Load More