惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Hacker News: Ask HN
Hacker News: Ask HN
WordPress大学
WordPress大学
T
The Blog of Author Tim Ferriss
The GitHub Blog
The GitHub Blog
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
博客园 - 聂微东
A
About on SuperTechFans
Stack Overflow Blog
Stack Overflow Blog
雷峰网
雷峰网
Microsoft Azure Blog
Microsoft Azure Blog
腾讯CDC
爱范儿
爱范儿
酷 壳 – CoolShell
酷 壳 – CoolShell
博客园 - 【当耐特】
V
Visual Studio Blog
有赞技术团队
有赞技术团队
U
Unit 42
D
Docker
小众软件
小众软件
F
Full Disclosure
I
Intezer
Scott Helme
Scott Helme
P
Privacy International News Feed
P
Proofpoint News Feed
Engineering at Meta
Engineering at Meta
Google DeepMind News
Google DeepMind News
B
Blog
Martin Fowler
Martin Fowler
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
Vercel News
Vercel News
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
Spread Privacy
Spread Privacy
宝玉的分享
宝玉的分享
S
Security Affairs
www.infosecurity-magazine.com
www.infosecurity-magazine.com
月光博客
月光博客
C
Cisco Blogs
云风的 BLOG
云风的 BLOG
Schneier on Security
Schneier on Security
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
T
Threat Research - Cisco Blogs
量子位
Hacker News - Newest:
Hacker News - Newest: "LLM"
H
Heimdal Security Blog
N
Netflix TechBlog - Medium
H
Hacker News: Front Page
P
Proofpoint News Feed
G
GRAHAM CLULEY
V
Vulnerabilities – Threatpost
S
Schneier on Security

Forbes - Innovation

Why Do Humans Have Fingerprints? Hint: It’s Not What You Think Booking.com Confirms Data Breach, Reservation PIN Codes Changed Why Major News Sites Are Blocking The Internet Archive’s Wayback Machine iPhone Fold Release Date: New Report Details Frustrating Apple News Comet Tracker: How To See Pan-STARRS And Three Planets On Wednesday NYT Mini Crossword Today: Tuesday, April 14 Hints And Answers Today’s NYT Strands Hints, Spangram, Answers: Tuesday, April 14 (It’s A Little Unclear) Today’s Wordle #1760 Hints And Answer For Tuesday, April 14 Most Of The Microplastics In Urban Air Come From Tires Today’s Wordle #1759 Hints And Answer For Monday, April 13 NYT Mini Crossword Today: Monday, April 13 Hints And Answers NYT Pips Today: Hints, Answers And Walkthrough For Monday, April 13 The YC Chief Who Codes 10,000 Lines A Day Has A Simple Secret Samsung Expands One UI 8.5 Beta To More Galaxy Owners Why You Should Stop Using Your iPhone If It’s On This List Chamath Says Firms That Treat AI As A Strategy Hand Rivals Their Edge 3 Unexpected Habits Of Secure Couples, By A Psychologist The First Lamp That Folds Your Clothes Samsung’s Disappointing Price Update For Galaxy Phone Buyers 3 Subtle Signs Someone Is Falling In Love With You, By A Psychologist Do Mantis Shrimp See More Colors Than Humans? A Biologist Explains NYT Connections Answers Explained For Monday, April 13 (#1,037) NYT Connections Hints Today: Monday, April 13 Clues And Answers (#1,037) LEGO Luigi & Mach 8 (72050) Review: 2026’s Best Set Yet? Marc Andreessen Says AI Productivity Will Trigger A Hiring Boom 3D Printing Is The Ultimate Hack To Reduce Household Spending Apple iPhone Fold: Striking Design Revealed In Leaked Photos Apple Smart Glasses: New Leak Reveals A Major Design Twist To Beat Meta Tested: The AI Coming To The Rivian R2 Quordle Hints Today: Monday, April 13 Clues And Answers Companies And H-1B Employees Endure Immigration Waits At Consulates 3 Easy Ways To Turn Anxiety Into Sustained Focus, By A Psychologist Here’s The Most Affordable Humanoid Robot You Can Buy Now UFC 327 Results: 5 Biggest Takeaways From A Wild Night In Miami UFC 327 Results, Bonus Winners, Highlights And Reactions Dana White Announces Huge New Fight For UFC White House Today’s NYT Strands Hints, Spangram, Answers: Sunday, April 12 (Get Ready) Tesla ‘Model 2’ Rises From The Ashes Today’s Wordle #1758 Hints And Answer For Sunday, April 12 NYT Pips Today: Hints, Answers And Walkthrough For Sunday, April 12 Tyson Fury Vs. Arslanbek Mahkmudov Results: Highlights and Reaction NYT Mini Crossword Today: Sunday, April 12 Hints And Answers How Shadow AI Culture Is Destroying Your Business Venture Capital Funds That Market Like Startups Win More Deals Conor Benn Vs. Regis Prograis Results: Highlights and Reaction Samsung’s Disappointing Price Update For Galaxy Phone Buyers Artemis Reached The Moon. The Grid Can Reach The 21st Century A Biologist Explains How Archerfish Shoot Down Prey. Hint: Their Aim Rivals Human Throwing Is It Time For Apple To Forget About The MacBook Air NYT Connections Hints Today: Sunday, April 12 Clues And Answers (#1036) Trump’s 2027 Budget To Reshape U.S. Environmental And Energy Policy CDC Delays Reporting Of COVID-19 Vaccine Benefits—Here’s What To Know Oura Has Designed A Solution To A Big Smart Ring Problem Netflix’s Best New Show Has A Near-Perfect 95% Rotten Tomatoes Score Coachella 2026 Is Being Taken Over By Creator Streams Quordle Hints Today: Sunday, April 12 Clues And Answers This Startup Wants To Use AI To Help Digitize History How To Get The Best Shield In ‘Crimson Desert’ Microsoft Venom Attack Targets C-Suite Executives ‘Maul: Shadow Lord’ Sets Even More Star Wars Rotten Tomatoes Records 3 Ways Happy Couples Argue Differently, By A Psychologist Success For Leapmotor Might Have Negatives For Stellantis New Names Surface As Potential Rogue And Wonder Woman In The MCU And DCU 4 Reasons Artemis Mission Matters Even If You Think It Is Wasteful Fast ‘Crimson Desert’ Patch Adds New Moves, Shield Hiding And One Great Feature Why Do Humans Blush? An Evolutionary Biologist Explains The Signal We Can’t Control Apple iPhone Fold: Striking Design Revealed In Leaked Photos Adobe Attacks Underway—Windows And Mac Users Given 72 Hours To Update iOS 26.4.1 Release: Crucial iPhone Feature Update Arrives, But No Security Fix Fury vs. Makhmudov Full Card, Ring Walk Times and How to Watch Can’t Stand Liquid Glass? This New Hidden iPhone Setting Is A Game-Changer Test-Driving The 2026 Changan Deepal S05: Italian Style Made In China NSA Warning—Reboot Your Internet Router Now Ways That Human-AI Collaboration Slides People Into ‘AI Brain Fry’ And Cognitive Downturns Stop Using These Networks—Google, NSA And TSA Warn NASA Changes Moon Plan: Landing Now Depends On SpaceX Or Blue Origin Samsung Expands One UI 8.5 Beta To More Galaxy Owners The Evolution Of Programmable Hardware At Xilinx NYT Mini Today: Saturday, April 11 Hints And Answers Today’s NYT Strands Hints, Spangram, Answers: Saturday, April 11 (You’re Putting Me On) Splashdown! NASA’s Artemis II Returns To Earth After Moon Mission Attention Is All You Need. The Human Kind Is Still The One That Counts Today’s Wordle #1757 Hints And Answer For Saturday, April 11 NYT Pips Today: Hints, Answers And Walkthrough For Saturday, April 11 Android Circuit: Galaxy S27 Pro Emerges, Honor 600 Pre-Order Offers, Pixel 11 Display Leaks Apple Loop: iPhone 18 Pro Leak, Urgent iOS Update, MacBook Neo Issues Morgan Stanley Has Mostly Positive Outlook On Tesla Robotaxi, FSD V15 Running Out Of AI Tokens Faster Than Ever? Here’s Why CoreWeave Shares Pop 13% After Anthropic Deal ‘Euphoria’ Season 3’s Rotten Tomatoes Score Crashes, Has Lost Key Player People Don’t Agree On What AI Can Do, But They Don’t Even Use The Same Product ‘Overwhelming’—Google Issues Gemini Update For Gmail Users NYT Connections Hints Today: Saturday, April 11 Clues And Answers (#1035) Quordle Hints Today: Saturday, April 11 Clues And Answers The Costly Dream Of Space-Based AI Infrastructure Can You See The Watcher In This ‘Daredevil: Born Again’ Shot? Adobe Attacks Underway—Windows And Mac Users Given 72 Hours To Update You Just Watched The Backdoor Pilot For ‘The Pitt: Night Shift’ Are Nicotine Pouches Like Zyn And VELO Safe To Use? A Doctor Answers Human Resources (HR) Is The Key To AI Success Per WalkMe ( SAP)
​From KYC To KYA: Securing AI-Driven Transactions In The Enterprise
Huzefa Olia · 2026-06-17 · via Forbes - Innovation

Huzefa Olia is co-founder and COO of 1Kosmos, focused on digital identity and trust frameworks for AI systems.

getty

​AI agents are starting to inherit the same trusted access paths once reserved for employees, administrators and enterprise applications. They can approve transactions, provision infrastructure, access sensitive records, interact with SaaS platforms and trigger operational workflows at machine speed. In many organizations, they are already doing so with limited oversight and weak identity controls.

This is creating a dangerous disconnect between how enterprises govern human identity and how autonomous systems actually operate. That’s why identity security is evolving from know your customer (KYC) and know your employee (KYE) toward a new category of risk: know your agent (KYA).

Long-lived API keys, overprivileged service accounts, weak runtime validation and fragmented ownership models are creating new forms of transaction risk that traditional authentication controls are not designed to address. The issue is no longer just verifying humans during onboarding or log-in. Organizations must now determine whether an autonomous system should be trusted to execute a specific transaction at a specific moment under a defined set of conditions.

KYC and KYE solve different problems.

While KYC focuses on establishing trust before granting external users access to accounts, services or transactions, KYE addresses a different challenge: continuously validating employees and contractors who already have access to enterprise systems.

This distinction matters because many modern attacks no longer target external account creation alone. Threat actors increasingly exploit internal trust relationships through social engineering, service desk impersonation, MFA reset requests and credential recovery workflows. In these situations, attackers are attempting to hijack legitimate accounts.

AI-assisted impersonation is accelerating the problem. Voice cloning, synthetic video, deepfake-assisted social engineering and AI-generated communications are making traditional identity verification methods less reliable, particularly in remote workflows where trust decisions rely heavily on human judgment. As a result, organizations are moving away from knowledge-based verification toward stronger identity assurance, device trust, cryptographic verification and continuous validation during sensitive actions.

AI agents change the nature of transaction risk.

Traditional automation followed relatively predictable rules, but AI agents can operate with varying degrees of autonomy, contextual decision-making and delegated authority. An AI-driven operations agent may provision cloud resources automatically. A procurement assistant may initiate purchasing workflows. A customer service agent may access sensitive records and execute transactions across integrated systems. Development agents may modify infrastructure or interact with CI/CD pipelines.

In many cases, these systems operate using the same identity infrastructure originally designed for applications and service accounts. That creates several security gaps:

1. Organizations often lack clear accountability for agent-driven actions. An action may appear to originate from a valid API credential or service account, but determining which agent initiated the request, who authorized it or whether the action aligned with policy can be difficult.

2. AI agents dramatically increase transaction velocity. A compromised account or overprivileged agent may execute actions at machine speed across multiple systems before human operators recognize abnormal behavior.

3. Many organizations are extending broad standing privileges to autonomous systems without implementing sufficient runtime validation or operational constraints. Long-lived credentials, excessive permissions and weak segmentation can give AI agents excessive operational authority.

This creates a new category of transaction security risk where the issue is not simply whether credentials are valid but whether the requested action itself should be allowed under current conditions.

Identity verification alone is no longer enough.

Many identity programs still focus heavily on MFA, passwordless access, biometrics and phishing-resistant authentication. But authentication alone does not adequately address autonomous transaction risk. An authenticated AI agent may be able to execute unauthorized actions, access unintended systems or operate outside the approved business scope. A compromised or socially engineered human account may do the same.

The security question is increasingly shifting from “Was the identity verified?” to “Should this transaction be allowed right now?” That distinction is becoming critical in environments where AI systems can operate independently to take action. It’s also forcing the need for stronger controls around transaction-level verification, authorization scope and runtime policy enforcement.​

Practical security principles can help govern AI agents.

No single framework fully addresses AI agent governance today, but several practical security principles are emerging:

• Move away from long-lived API keys, static credentials and persistent standing privileges. AI agents should operate with time-bound, scoped credentials tied to specific tasks and operational boundaries.

• Tie every autonomous agent to a verified human owner or accountable business function. Organizations should always be able to determine who authorized an agent, what it is allowed to do and whether that authority is still valid.

• Implement runtime authorization for high-risk actions. Identity, permissions and policy should be validated continuously during execution, not just when credentials are initially issued.

• Require additional verification or human approval for sensitive transactions involving privileged access, financial operations, infrastructure changes or sensitive data movement.

• Apply governance controls across prompts, data access and operational scope to reduce excessive permissions and limit unintended agent behavior.

• Treat AI agents and nonhuman identities with the same rigor applied to privileged human accounts, including continuous monitoring, credential expiration and immediate revocation when owners or workflows change.

As AI agents become more deeply integrated into operational workflows, identity systems must be capable of addressing not only who or what is requesting access but also whether a specific action should be trusted at the exact moment it occurs. This shift toward runtime transaction validation will define the next phase of enterprise security.


Forbes Technology Council is an invitation-only community for world-class CIOs, CTOs and technology executives. Do I qualify?