The security team said yes: How a $300B deployed Claude agents across the enterprise →

TRY AEMBIT
TALK TO AN ENGINEER
Blog

Tag: Workload Identity

Workload identity vs. workload access management

Workload Identity vs. Workload Access Management: Securing Cloud-Native Workloads in a Dynamic Environment

Workload identity proves who a workload is. Workload access management controls what it can do. Learn why separating them is critical for zero trust.
Dan Kaplan
Apr 2026
|
5 min read
human identity vs non human identity

How to Distinguish Between Human and Nonhuman Identities

Two in five SaaS platforms fail to distinguish human from nonhuman identities. Learn why the distinction matters and how to manage both securely.
Dan Kaplan
Apr 2026
|
5 min read
Attestation-based identity

​​Attestation-Based Identity: How It Works and Why It Matters

Attestation-based identity verifies workloads using cryptographic environment evidence rather than stored secrets. Learn how it works across hardware and cloud.
Ashur Kanoon
Apr 2026
|
8 min read
AI Agent Identity: The Multi-Protocol Authentication Gap

AI Agent Identity: The Multi-Protocol Authentication Gap

AI agent identity breaks down when agents authenticate across OAuth, API keys and managed identities simultaneously. Learn why single-protocol solutions fail.
Apurva Davé
Apr 2026
|
6 min read
What Identity Federation Means for Workloads

What Identity Federation Means for Workloads in Cloud-Native Environments

Instead of duplicating accounts or sharing credentials, one identity system can validate identities issued by another and grant access based on that trust.
Dan Kaplan
Mar 2026
|
6 min read
The What, Where, and Why of Workload Identity and Access Management header image with cloud and network patterns

Workload Identity and Access Management: The Definitive Guide

For every human identity your IAM program governs, there are roughly 82 machine identities operating outside it. Most of them authenticate with static credentials that were provisioned once and never reviewed.
Dan Kaplan
Mar 2026
|
6 min read
Claude Code external UI.

Anthropic’s AI-Run Attack and What It Means for Agentic Identity

Anthropic’s disclosure of an AI-driven espionage campaign it halted is best understood as a faster, more persistent version of patterns the industry has seen before. What distinguishes this incident is the continuity of activity an autonomous system can sustain once it is given the ability to interpret its surroundings and act on that understanding.
Dan Kaplan
Mar 2026
|
6 min read
Trivy gets breached and the secrets problem.

The Trivy Compromise: The Fallacy of Secrets Management and the Case for Workload Identity

The Trivy incident exposed a credential architecture failure, not just a supply chain one. Here’s the case for workload identity and access.
Apurva Davé
Mar 2026
|
5 min read
AI Agent Identity Security: Why It Matters and How to Get It Right

AI Agent Identity Security: Why It Matters and How to Get It Right

AI agent identity security is the set of practices and controls that treat AI agents as distinct, governable identities with their own authentication, authorization and audit requirements.
Apurva Davé
Mar 2026
|
5 min read
secret remediation best practices

Secret Remediation Best Practices: A Step-by-Step Guide

Secret remediation is the process of responding to an exposed credential by revoking it, rotating it and removing every trace of it from your environment.
Apurva Davé
Mar 2026
|
6 min read
Load More