Aembit IAM for Agentic AI now supports Microsoft Copilot Studio. Read More →

Get an Aembit Tenant
TALK TO AN ENGINEER

<  BACK TO FULL GLOSSARY

Glossary Terms: T

A
B
C
D
E
F
G
H
I
J
K
L
M
N
O
P
Q
R
S
T
U
V
W
X
Y
Z

Tool Poisoning

NHI security threats
Tool poisoning is an attack in which a malicious or compromised tool exposed through an MCP server or agent framework executes harmful actions when invoked by an AI agent. Because agents trust the tools they are authorized to use, a poisoned tool can exfiltrate data, escalate privileges, or take destructive actions under the cover of legitimate access. Controlling which tools an agent can access, and enforcing policy on every invocation, is the primary defense.

TLS (Transport Layer Security)

Security concepts
A cryptographic protocol that provides secure communication over a computer network. TLS is commonly used to encrypt API traffic and protect sensitive information from eavesdropping and tampering.

TLS/SSL Certificate

Identity types
Transport Layer Security (TLS) or Secure Sockets Layer (SSL) certificates provide secure communication over a network by encrypting data transmitted between machines, often used in web servers, APIs, and other network services.

Token

Identity types
A piece of data used for authentication or authorization, typically issued by an identity provider or authentication service. Tokens may include access tokens, refresh tokens, session tokens, or JWTs, depending on the authentication mechanism and protocol used.

Token Forging

NHI security threats
A technique where attackers create or manipulate authentication tokens to gain unauthorized access to systems or services. By forging tokens, attackers can impersonate legitimate non-human identities, bypass authentication controls, and escalate privileges within an environment. Proper validation, short token lifespans, and cryptographic integrity checks help mitigate this risk.

Trust Relationship

Security concepts
A mutual agreement or configuration between identity providers and service providers that establishes trust and enables federated identity management. Trust relationships define the rules and protocols for exchanging identity tokens, assertions, and attributes securely.

Two-Factor Authentication (2FA)

Security concepts
An authentication method that requires users to provide two forms of verification to access an account or system. Password managers and vaults often support 2FA to enhance security by requiring an additional factor, such as a code from a mobile app or a hardware token.

Trust Provider

IAM concepts
A Trust Provider is a component that verifies the identity of workloads (applications, services) using cryptographically verifiable methods, such as certificates. Trust Providers are used to ensure that only verified and trusted workloads can access sensitive resources or other services.