AI Identity
AI agent identities, agentic AI security, and the privilege risks of LLM-powered automation in enterprise environments.
20 terms in AI Identity
What is AI Agent Identity?
AI Agent Identity is the unique digital identity assigned to an AI agent so it can be authenticated, authorized, monitored, governed, and audited.
What is AI Agent Identity Security?
AI agent identity security governs how autonomous AI agents authenticate, are authorized, audited, and contained — a new pillar of identity security.
Why AI Agents Need Their Own Identities
Sharing a service account or piggy-backing on a user breaks attribution, audit, and least privilege for AI agents. Each agent needs its own identity.
Human Identity vs AI Agent Identity: What is the Difference?
Human and AI agent identities differ in behavior, scale, attack surface, and required controls. Learn the differences and how to govern each.
What is Agentic AI Security?
Agentic AI security secures autonomous AI systems that plan, reason, and act. Learn the threat model, controls, and governance unique to agentic AI.
What is AI Agent Authentication?
AI agent authentication establishes who an agent is when it calls APIs and tools. Learn the patterns: OAuth, federation, mTLS, and tokens.
What is AI Agent Authorization?
AI agent authorization decides what an authenticated agent can do — which tools, data, and actions are allowed. Learn the patterns and risks.
What is Delegated Access for AI Agents?
Delegated access lets an AI agent act on behalf of a user — securely if bounded, dangerously if unbounded. Learn the patterns and pitfalls.
What is Agent-to-Agent Authentication?
Agent-to-agent authentication establishes trust between AI agents in multi-agent systems. Learn the patterns and risks.
What is Human-in-the-Loop Authorization?
Human-in-the-loop (HITL) authorization requires a human to approve sensitive AI agent actions before execution. Learn when and how to apply it.
What is AI Agent Access Governance?
AI agent access governance is the program of inventory, ownership, lifecycle, review, and policy enforcement for every AI agent in your environment.
What is an AI Agent Permission Model?
An AI agent permission model defines how tools, data, delegation, and conditions combine to determine what an agent can do at any moment.
What is AI Agent Impersonation Risk?
AI agent impersonation is when something acts as an agent without authorization — or when an agent acts beyond its sanctioned identity. Learn the risks and defenses.
What is Shadow AI Agent?
Shadow AI agents are AI agents deployed in your environment without security or governance review. Learn the risks and how to bring them into the light.
What is Over-Permissioned AI Agent?
An over-permissioned AI agent has more tools, data, or delegation than its use case requires — amplifying every compromise. Learn how to detect and remediate.
What is AI Agent Privilege Escalation?
AI agent privilege escalation is when an agent ends up with more authority than intended — via tool composition, delegation chains, or impersonation.
What is AI Agent Attack Surface?
The AI agent attack surface is every input, tool, identity, and trust relationship an attacker can exploit. Learn the layers and how to map them.
Common AI Agent Identity Security Risks
From shared identities to prompt injection to over-permissioning, learn the most common AI agent identity security risks and how to remediate them.
AI Agent Security Best Practices
A consolidated set of AI agent security best practices covering identity, authorization, prompt safety, monitoring, governance, and incident response.
AI Agent Identity Security Checklist
A practical, prioritized AI agent identity security checklist covering identity, authorization, prompt safety, monitoring, governance, and recovery.
See your identity risk clearly.
Start with a 1-day Proof of Value in your own environment.