SACR Report: How Agentic Identity Access Platforms Are Re-architecting IAM in 2026 →
TRY AEMBIT
TALK TO AN ENGINEER

<  BACK TO FULL GLOSSARY

Security concepts

Security concepts refer to the strategies, controls, and frameworks used to protect data, systems, and networks from unauthorized access or damage. Core ideas include confidentiality, integrity, availability, and non-repudiation.

Categories:
AI/MCP Concepts
IAM concepts
Identity types
IT concepts
NHI security threats
Security concepts

Secret

Security concepts
A secret is sensitive credential material or key data used to authenticate or authorize access to systems, services, or data. In modern infrastructure, secrets encompass API keys, passwords, tokens, certificates, database credentials, SSH keys, and OAuth client secrets that workloads and services use for machine-to-machine authentication.
Read More

OAuth

Security concepts
OAuth 2.0 is an authorization framework defined by IETF RFC 6749 that enables applications to obtain limited access to protected resources without exposing credentials. OAuth answers “What can they access?” by issuing short-lived bearer tokens with specific scopes. For identity verification and authentication, OAuth 2.0 must be combined with protocols like OpenID Connect.
Read More

Conditional Access

Security concepts
Conditional access is a security framework that evaluates real-time signals such as the program’s ID, its security health, location, and time, before granting or denying access. Instead of relying only on static passwords or keys, conditional access enforces dynamic, context-aware decisions that adapt instantly to changing risk conditions. For organizations building zero trust architectures, conditional access is no longer optional; it’s a critical security control. This is especially true if you are managing AI agents, microservices, and hybrid cloud workloads that operate across AWS, Azure, GCP, and SaaS platforms.
Read More

Agent Authentication

Security concepts
Agent authentication is the process of verifying the identity of an AI agent, service, or automated workload before it’s allowed to access tools, data, or APIs. It ensures that autonomous systems act within defined boundaries and that each action is tied to a verifiable, trusted entity.
Read More

Active Directory

Security concepts
Active Directory (AD) is Microsoft’s directory service that manages and authenticates users, computers, and resources within a networked environment. It provides centralized control over identities, permissions, and access policies across Windows-based systems.
Read More

Multi-factor Authentication (MFA)

Security concepts
An authentication method that requires users to provide multiple forms of verification, such as passwords, biometrics, or tokens, to access sensitive resources. Some secrets managers support MFA to enhance security when accessing stored secrets.

RBAC (Role-Based Access Control)

Security concepts
A method of access control where permissions are assigned to roles, and users or entities are assigned to those roles. Password managers may implement RBAC to enforce fine-grained access control and restrict access to sensitive features or data.

Hashing

Security concepts
In identity management, hashing is used to store and verify credentials like passwords by converting them into a fixed-size string of characters. Hashing algorithms also play a role in managing machine identities securely.

Encryption

Security concepts
The process of encoding data in such a way that only authorized parties can access and decrypt it. Password managers and vaults use encryption to protect stored passwords and sensitive information, ensuring confidentiality and data security.

Service-to-Service Authentication

Security concepts
Authentication mechanism used between services or applications to establish trust and securely exchange information without human involvement. Service-to-service authentication often relies on cryptographic protocols, such as OAuth 2.0, to authenticate and authorize interactions.