Meet Aembit IAM for Agentic AI. See what’s possible →

TRY AEMBIT
TALK TO AN ENGINEER

<  BACK TO FULL GLOSSARY

Security concepts

Security concepts refer to the strategies, controls, and frameworks used to protect data, systems, and networks from unauthorized access or damage. Core ideas include confidentiality, integrity, availability, and non-repudiation.

Categories:
AI/MCP Concepts
IAM concepts
Identity types
IT concepts
NHI security threats
Security concepts

Decommission

Security concepts
Decommissioning refers to the systematic process of retiring digital identities, credentials, and access permissions when they are no longer needed.
Read More

Workload Identity Management

Security concepts
Workload identity management governs how non-human entities, applications, services, containers, scripts, and automated processes) authenticate and authorize their interactions across distributed systems.
Read More

Secret

Security concepts
A secret is sensitive credential material or key data used to authenticate or authorize access to systems, services, or data. In modern infrastructure, secrets encompass API keys, passwords, tokens, certificates, database credentials, SSH keys, and OAuth client secrets that workloads and services use for machine-to-machine authentication.
Read More

OAuth

Security concepts
OAuth 2.0 is an authorization framework defined by IETF RFC 6749 that enables applications to obtain limited access to protected resources without exposing credentials. OAuth answers “What can they access?” by issuing short-lived bearer tokens with specific scopes. For identity verification and authentication, OAuth 2.0 must be combined with protocols like OpenID Connect.
Read More

Conditional Access

Security concepts
Conditional access is a security framework that evaluates real-time signals such as the program’s ID, its security health, location, and time, before granting or denying access. Instead of relying only on static passwords or keys, conditional access enforces dynamic, context-aware decisions that adapt instantly to changing risk conditions. For organizations building zero trust architectures, conditional access is no longer optional; it’s a critical security control. This is especially true if you are managing AI agents, microservices, and hybrid cloud workloads that operate across AWS, Azure, GCP, and SaaS platforms.
Read More

Agent Authentication

Security concepts
Agent authentication is the process of verifying the identity of an AI agent, service, or automated workload before it’s allowed to access tools, data, or APIs. It ensures that autonomous systems act within defined boundaries and that each action is tied to a verifiable, trusted entity.
Read More

Active Directory

Security concepts
Active Directory (AD) is Microsoft’s directory service that manages and authenticates users, computers, and resources within a networked environment. It provides centralized control over identities, permissions, and access policies across Windows-based systems.
Read More

Multi-factor Authentication (MFA)

Security concepts
An authentication method that requires users to provide multiple forms of verification, such as passwords, biometrics, or tokens, to access sensitive resources. Some secrets managers support MFA to enhance security when accessing stored secrets.

Posture Assessment

Security concepts
A posture assessment evaluates the security status or “posture” of an organization’s IT environment. In IAM, it assesses how secure the current configuration of identities, access controls, and policies are, ensuring they adhere to best practices and regulatory requirements.

RBAC (Role-Based Access Control)

Security concepts
A method of access control where permissions are assigned to roles, and users or entities are assigned to those roles. Password managers may implement RBAC to enforce fine-grained access control and restrict access to sensitive features or data.