The security team said yes: How a $300B investment firm deployed Claude agents across the enterprise →

TRY AEMBIT
TALK TO AN ENGINEER

<  BACK TO FULL GLOSSARY

Security concepts

Security concepts refer to the strategies, controls, and frameworks used to protect data, systems, and networks from unauthorized access or damage. Core ideas include confidentiality, integrity, availability, and non-repudiation.

Categories:
AI/MCP Concepts
IAM concepts
Identity types
IT concepts
NHI security threats
Security concepts

Granularity

Security concepts
Granularity refers to the level of detail and precision an access control system can apply when defining permissions. A granular access model allows organizations to specify exactly which identities, human or nonhuman, can perform which actions on which resources, under which conditions.
Read More

Digital Certificate

Security concepts
A digital certificate is an electronic credential issued by a trusted third party (certificate authority, or CA). It securely links a public key to an identity, enabling secure sign-in and encrypted communication between your machines, applications, or users.
Read More

Cybersecurity Compliance

Security concepts
Beyond avoiding fines, a strong cybersecurity compliance framework is a forcing function for security excellence. It pushes teams to eliminate credential sprawl, implement zero-trust principles, and maintain visibility into access patterns across increasingly complex architectures.
Read More

Attribute Assertion

Security concepts
An attribute assertion is simply a structured, verifiable claim about an identity, whether it’s a human user or a piece of software. It’s delivered by your identity system to another application during authentication.
Read More

Decommission

Security concepts
Decommissioning refers to the systematic process of retiring digital identities, credentials, and access permissions when they are no longer needed.
Read More

Workload Identity Management

Security concepts
Workload identity management governs how non-human entities, applications, services, containers, scripts, and automated processes) authenticate and authorize their interactions across distributed systems.
Read More

Secret

Security concepts
A secret is sensitive credential material or key data used to authenticate or authorize access to systems, services, or data. In modern infrastructure, secrets encompass API keys, passwords, tokens, certificates, database credentials, SSH keys, and OAuth client secrets that workloads and services use for machine-to-machine authentication.
Read More

OAuth

Security concepts
OAuth 2.0 is an authorization framework defined by IETF RFC 6749 that enables applications to obtain limited access to protected resources without exposing credentials. OAuth answers “What can they access?” by issuing short-lived bearer tokens with specific scopes. For identity verification and authentication, OAuth 2.0 must be combined with protocols like OpenID Connect.
Read More

Conditional Access

Security concepts
Conditional access is a security framework that evaluates real-time signals such as the program’s ID, its security health, location, and time, before granting or denying access. Instead of relying only on static passwords or keys, conditional access enforces dynamic, context-aware decisions that adapt instantly to changing risk conditions. For organizations building zero trust architectures, conditional access is no longer optional; it’s a critical security control. This is especially true if you are managing AI agents, microservices, and hybrid cloud workloads that operate across AWS, Azure, GCP, and SaaS platforms.
Read More

Agent Authentication

Security concepts
Agent authentication is the process of verifying the identity of an AI agent, service, or automated workload before it’s allowed to access tools, data, or APIs. It ensures that autonomous systems act within defined boundaries and that each action is tied to a verifiable, trusted entity.
Read More