The security team said yes: How a $300B investment firm deployed Claude agents across the enterprise →

TRY AEMBIT
TALK TO AN ENGINEER
Blog

Tag: Workload Identity

Hand holding a secure badge

Zero Trust for Nonhuman Workload Access: A Primer

Zero trust has matured for human users, but most workloads are still running on static secrets. This primer covers the principles to fix that.
Apurva Davé
Apr 2026
|
6 min read
moving beyond static credentials

Moving Beyond Static Credentials in Cloud-Native Environments

Static credentials were never built for cloud-native environments, and the gaps they leave behind are exactly what attackers count on.
Ashur Kanoon
Apr 2026
|
5 min read
Connectivity of boxes

Secrets Management vs. Access Management: What You Need to Know

When your team stores API keys in a vault and rotates them on a schedule, it feels like the access problem is handled.
Apurva Davé
Apr 2026
|
5 min read
Workload identity vs. workload access management

Workload Identity vs. Workload Access Management: Securing Cloud-Native Workloads in a Dynamic Environment

Workload identity proves who a workload is. Workload access management controls what it can do. Learn why separating them is critical for zero trust.
Dan Kaplan
Apr 2026
|
5 min read
human identity vs non human identity

How to Distinguish Between Human and Nonhuman Identities

Two in five SaaS platforms fail to distinguish human from nonhuman identities. Learn why the distinction matters and how to manage both securely.
Dan Kaplan
Apr 2026
|
5 min read
Attestation-based identity

​​Attestation-Based Identity: How It Works and Why It Matters

Attestation-based identity verifies workloads using cryptographic environment evidence rather than stored secrets. Learn how it works across hardware and cloud.
Ashur Kanoon
Apr 2026
|
8 min read
AI Agent Identity: The Multi-Protocol Authentication Gap

AI Agent Identity: The Multi-Protocol Authentication Gap

AI agent identity breaks down when agents authenticate across OAuth, API keys and managed identities simultaneously. Learn why single-protocol solutions fail.
Apurva Davé
Apr 2026
|
6 min read
What Identity Federation Means for Workloads

What Identity Federation Means for Workloads in Cloud-Native Environments

Instead of duplicating accounts or sharing credentials, one identity system can validate identities issued by another and grant access based on that trust.
Dan Kaplan
Mar 2026
|
6 min read
The What, Where, and Why of Workload Identity and Access Management header image with cloud and network patterns

Workload Identity and Access Management: The Definitive Guide

For every human identity your IAM program governs, there are roughly 82 machine identities operating outside it. Most of them authenticate with static credentials that were provisioned once and never reviewed.
Dan Kaplan
Mar 2026
|
6 min read
Claude Code external UI.

Anthropic’s AI-Run Attack and What It Means for Agentic Identity

Anthropic’s disclosure of an AI-driven espionage campaign it halted is best understood as a faster, more persistent version of patterns the industry has seen before. What distinguishes this incident is the continuity of activity an autonomous system can sustain once it is given the ability to interpret its surroundings and act on that understanding.
Dan Kaplan
Mar 2026
|
6 min read
Load More