惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

C
CERT Recently Published Vulnerability Notes
D
Docker
GbyAI
GbyAI
博客园 - 三生石上(FineUI控件)
博客园_首页
H
Help Net Security
T
The Exploit Database - CXSecurity.com
Microsoft Security Blog
Microsoft Security Blog
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
P
Privacy & Cybersecurity Law Blog
AWS News Blog
AWS News Blog
Spread Privacy
Spread Privacy
F
Full Disclosure
Blog — PlanetScale
Blog — PlanetScale
Y
Y Combinator Blog
V
Vulnerabilities – Threatpost
P
Proofpoint News Feed
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
aimingoo的专栏
aimingoo的专栏
Simon Willison's Weblog
Simon Willison's Weblog
MyScale Blog
MyScale Blog
P
Palo Alto Networks Blog
S
Security Affairs
T
Tailwind CSS Blog
T
Tor Project blog
W
WeLiveSecurity
G
GRAHAM CLULEY
Know Your Adversary
Know Your Adversary
The Hacker News
The Hacker News
腾讯CDC
M
MIT News - Artificial intelligence
D
DataBreaches.Net
量子位
Martin Fowler
Martin Fowler
T
Threat Research - Cisco Blogs
博客园 - 【当耐特】
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
云风的 BLOG
云风的 BLOG
C
Cisco Blogs
I
InfoQ
Engineering at Meta
Engineering at Meta
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
C
CXSECURITY Database RSS Feed - CXSecurity.com
O
OpenAI News
美团技术团队
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
T
Troy Hunt's Blog
Microsoft Azure Blog
Microsoft Azure Blog
L
LangChain Blog
A
About on SuperTechFans

Featured Blogs - Forrester

Customer Zero Proves AI Works When Humans Change Customer Zero Programs Prove That AI Works When Humans Change Prime Day, June 2026: How Retailers Competed With Amazon Inclusive Design Is Automotive’s Overlooked Growth Opportunity B2B Social Media Influencers Have More Influence Than Ever Comcast Split Puts NBCUniversal In Play What Technology Leaders Should Not Miss At Technology & Innovation Forum Central Why Your AI Strategy Needs A DEXM Solution: Lessons From Nexthink Masters Of Experience The Dawn Of The Accidental Developer The Next Era Of B2B Events: 8 Data-Backed Shifts Defining 2026 The Next Era Of B2B Events: Eight Data-Backed Shifts Defining 2026 Announcing The Forrester Wave™ On Extended Detection And Response Platforms: Platformization, AI, And…AI Announcing The Forrester Wave™ On Extended Detection And Response Platforms: Platformization, AI, And … AI Use EO 14409 As A Canary For Enterprise PQC Migration And Procurement Use The New Executive Order As A Canary For Enterprise PQC Migration And Procurement EO 14409 Makes PQC Migration A Multi-Year Operational Program For Federal Security Leaders New Executive Order Makes PQC Migration A Multiyear Operational Program For Federal Security Leaders AI Is Moving Fast, But Trust Is Struggling To Keep Up: Why Security And Risk Leaders Can’t Miss Forrester’s AI Forum Answer Engines Will Select Your Content. Your Digital Experience Has To Do More. Meta Gambles With Its Trust In Prediction Markets The EU’s Digital Markets Act Meets The Mobile OS, Round 2 Don’t Just Hear About The IT Singularity — Work Through It At Our Austin Tech Forum Don’t Just Hear About The IT Singularity — Work Through It At Our NYC Tech Forum The Cost Of AI Productivity Is Less Creativity Dollars And Sense At FinOps X 2026: Is AI Value Management Bigger Than FinOps? Quantum Security Is No Longer Optional: A Practical Blueprint For Successful Implementation The AI Orchestration Layer In Banking Is The New Battleground The Canary in the CDP Mine: Databricks CustomerLake Is The Litmus Test For Agentic Marketing The Canary in the CDP Mine: Databricks CustomerLake Is The Litmus Test For Agentic Marketing AI Forces A Redesign Of How Marketing And Agencies Work The IT Singularity Is Here: Announcing Forrester’s 2026 Technology Events Nuvei Makes Its B2B Cross-border Payment Move: The Payoneer Acquisition Google Dethrones OpenAI As Agencies’ Preferred AI Partner When Algorithms And LLMs Become Sellers, Your Commerce Strategy Must Change Google Goes All-In: An AI-Operated System, Not AI-Assisted Products Cisco’s Platform Push: Big Vision, Real Questions Retail's Incremental Total Experience Shift: Select Brands See Significant Improvement It's Time To Elevate Journeys Into Decision Systems AI Agents Need Real-Time Context: Data Streaming Is How You Are Going To Get It Tackle Enterprise AI’s Hardest Question At Forrester’s AI Forums Building The Human Foundation For AI At CX Forum East What Separates Scalable AI-Driven Innovation From Promising Experiments Hyland CommunityLive 2026: A Call To Action for Enterprise Content Management Leaders Call For Entries: Forrester’s B2B Forum EMEA 2026 Awards AI Agents Are Your New Customer. But Can You Target and Grow Their Trust in Your Brand? Survey Insights: How Business Applications Are Purchased Governance: New Strategy, Old Hands On The Wheel … US Health Insurers Show Experience Improvements Announcing The 2026 Forrester Wave™ On Accounts Payable Invoice Automation Announcing The Forrester Wave™: Accounts Payable Invoice Automation Software, Q2 2026 US Banks’ Total Experience Is Improving, But Most Still Have Work To Do UK Social Media Ban Forces Platform Accountability Total Recall: A Cautionary Fable Of Anthropic And The US Government Consumers Aren’t Ready To Delegate Payments To AI Agents Fox Makes $22B Roku Acquisition Bet Secure The Future Of Internet Traffic As Agents Take Over Coupa’s Inspire 2026 Unveils A Strategy And Acquisition Spree To Build The Autonomous Spend Management “Network” A Fake PLG Strategy Is Exposed Through Your Digital Commerce Experiences Conway’s Law: Your Operating Model Matters More Than The AI Model Turn Application Portfolio Rationalization Into A Continuous Optimization Capability Healthcare And Life Sciences: Turning AI Momentum Into Lasting Value How To Build A Loyalty Team That Scales With Your Program Align B2B Marketing Teams To Thrive In A Buyer-Centric World OpenAI’s Proposed IPO Opens A Trifecta Of Opportunities For It, But Don’t Lock In Just Yet Retention-As-A-Service Is An Intriguing Idea — Here’s What It Actually Means Customer Success And Customer Experience: The Difference Is More Than Semantic How Fable 5 And Mythos 5 Change AI Security, Data Retention, And Vendor Risk Announcing Forrester’s Top Cybersecurity Threats For 2026 Your AI Bill Is A Context Problem Build The Human Foundations Before You Scale AI The State Of Agentic AI In 2026: Companies Are Chasing, Few Are Catching Move Over WAF. The Web Application Protection Platform Takes Over Microsoft Build 2026: Pushing The Frontier With A More Opinionated AI Playbook Anthropic’s Proposed IPO Will Change The Economics Of Enterprise AI AI Is Forging A New RevOps Identity AI Is Forging A New RevOps Identity Build Meaning Before Machines: Why Semantics, Ontologies, And Knowledge Graphs Matter For Agentic AI Red Hat Summit 2026: Can Red Hat Win Its Claim As The Hybrid AI Control Plane? Ad Creative Is A Technology Problem And Opportunity The State Of Portfolio And Product Marketing In 2026 Miro’s Big Bet: Can A Whiteboard Company Become The AI Decisioning Layer For The Enterprise? Agents Are In The Aisle: The 2026 NRF APAC Innovators To Watch Italy’s B2B Marketing Challenge Is Not Strategy — It’s Focus And Alignment If Buyers Change How They Search, Marketing Must Change How It Shows Up European B2B Marketing Has A Data Problem, Not A Vision Problem The AppGen And Low-Code Platforms Landscape, Q2 2026, Is Out! What Anthropic’s Two Recent Announcements Mean For Manufacturers Agentic AI In Insurance: Stop Chasing Autonomous Agents. Start Engineering Trust. The Consolidation Wars: M&A Is Rewriting Finance Automation Seven Ways To Turn CX Forum East Analyst Time Into Real Momentum Seven Ways To Turn CX Forum West Analyst Time Into Real Momentum Leading With Intention: What Women Leaders Told Us About AI And The Future Of Work Redesign B2B2C Digital Strategy For The AI Era Marketplace Platforms Aren’t One Market Anymore: Announcing Forrester’s Two Landscapes For 2026 The State Of Agentic Commerce In Mid-2026 If Your Employees Aren’t Ready For AI, Neither Is Your Business Announcing The Forrester Wave™: Governance, Risk, And Compliance Platforms, Q2 2026 Financial Well-Being Is Under Pressure — A Strategic Priority For Banks TeamViewer Connect: A Pragmatic Look At How IT Can Level Up DEX Freshworks Signals A More Practical Future For AI Service Management Zendesk Relate 2026 Showed Why Agentic Customer Service Starts With Knowledge
Identiverse 2026 Recap: Identity Security for Agentic AI Dominates
Andras Cser · 2026-06-26 · via Featured Blogs - Forrester

Last week’s Identiverse conference in Las Vegas left no doubt that the scope and importance of identity security is now magnified. Identiverse 2026 underscored the current transition in identity security as organizations grapple with an expanding universe of identities beyond humans. As Ping Identity CEO Andre Durand framed it in his opening keynote, the industry is shifting toward “actions, not access” – a move from static access control to continuous, real-time identity decisions that govern what entities can do.

Conversations across the event highlighted the growing importance of governing non-human identities (NHIs), AI agents, and machine-driven interactions as first-class security concerns. NHI and AI security was also the predominant theme across the 200+ booths in the expo hall.  Amidst the crush of AI-infused presentations and vendor messaging, the conference also stood out as a testament to the range of identity’s reach, featuring breakout sessions spanning mobile driver’s licenses (mDLs), data and privacy, fraud, FIDO passkeys, cybersecurity architecture, software development practices, industry standards, threat detection and response, and operational resiliency.

AI agents’ adoption is unstoppable, during the conference we heard presenter estimates that 75-85% of organizations have already started adopting AI agents. Security, and in particular Identity and Access Management, continue to play an oversized role in securing AI agents.

AI agents represent an autonomous, non-deterministic, and numerous non-human identity type but also present a new channel for user interaction (e.g.: human users can spawn their own enterprise data collection, and consumer purchase agents). Here are our main takeaways from Identiverse 2026:

  • New discovery and governance methods are required. AI agents do not fit into the existing mold of static and human time horizon Identity Management and Governance (IMG/IGA) tooling and processes. AI agent governance is more real time, context aware, and build-time intent aware. Delegation to a uniquely identified agent, and not impersonation is the recommended design pattern. AI governance should also look at agent provenance and reputation using repositories, agent suppliers (e.g.: Amazon shopping agents).
  • AI Agents Require new access policy decision frameworks. AI agents’ authentication to MCP servers is the easier, more mature part: they use OAuth 2.1 OIDC tokens to authenticate to MCP servers and other resources. AI Agent authorization is where we are seeing the greatest paradigm shift from simple static, ABAC/RBAC authorization policies to much more contextual, intent-verified, boundary constrained (“this agent can only spend up to $300 on buying kitchenware from an eCommerce site”). Authorization is just-in-time, context (network, jurisdiction, resource) and must happen in real time. The conference reinforced the growing momentum behind more dynamic, fine-grained authorization.
  • Risk definition and measurement is still unclear. AI agents’ actions represent financial and reputational risk to organizations. For example, in a B2C use case, a purchasing AI agent may 1) scrape a website and hoard a cart, 2) make fraudulent purchases, and 3) perform actions that cause dissatisfaction for the agent’s human owner. Defining, keeping track of and abating these risks does not yet have a mature product solution.  End user organizations are currently using in-house built telemetry and solutions for this purpose.
  • IAM for AI agents must fit into an organization’s IAM mesh. AI agent identities must be tied and correlated to human identities’ access management in enterprise IAM. IAM for human and deterministic machine identities remains an organizational challenge – adding IAM requirements for AI agents further complicates the landscape. Trying to cobble together a non-standards based IAM solution to manage AI Agents can quickly create technical debt. Okta, Microsoft and Ping Identity have just introduced frameworks for IAM for AI agents– their ready to deploy blueprints with examples are overdue and solid starting points for managing AI Agent identities.
  • Identity standards is ongoing but not unified. Auth.md, ID-JAG, SPIFFE, AUIC-1, IETF’s RFCs and other standards are either not final, work in progress or are less than 12 months old. Commercial and in-product support is still scarce but rapidly improving. Anecdotally, we found that organizations are still waiting for AI agent security standards to solidify, mature, and become commercially supported before fully implementing them.

Overall, Identiverse 2026 underscored that the next phase of identity security will be defined by how effectively organizations extend governance to autonomous systems, unify identity data across silos, and operationalize identity intelligence in real time.

Forrester clients who want to dive deeper into this topic and discuss how they should implement IAM for agents should schedule an inquiry or guidance session with us.

Categories

Blog

Announcing The Forrester Wave™ On Extended Detection And Response Platforms: Platformization, AI, And … AI

Last week, Forrester released The Forrester Wave™: Extended Detection And Response Platforms, Q2 2026. This is the third iteration of the extended detection and response (XDR) Wave, with prior versions published in 2021 and 2024. This Wave differs significantly from the past, especially because of: The number of vendors. This year, only seven vendors were […]

Blog

Use The New Executive Order As A Canary For Enterprise PQC Migration And Procurement

On June 22, 2026, the White House issued a new executive order (EO), Securing the Nation Against Advanced Cryptographic Attacks. While it has direct implications for federal agencies, there are parts that are worth paying attention to for enterprise security and risk leaders. Here’s what’s worth your attention, whether or not you hold a federal […]