惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

V
V2EX
爱范儿
爱范儿
Martin Fowler
Martin Fowler
T
The Blog of Author Tim Ferriss
B
Blog RSS Feed
博客园 - 聂微东
G
GRAHAM CLULEY
Engineering at Meta
Engineering at Meta
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
WordPress大学
WordPress大学
Scott Helme
Scott Helme
AI
AI
S
Security Affairs
T
Threat Research - Cisco Blogs
M
MIT News - Artificial intelligence
T
Troy Hunt's Blog
H
Hackread – Cybersecurity News, Data Breaches, AI and More
人人都是产品经理
人人都是产品经理
AWS News Blog
AWS News Blog
T
Threatpost
Cyberwarzone
Cyberwarzone
www.infosecurity-magazine.com
www.infosecurity-magazine.com
U
Unit 42
V
Vulnerabilities – Threatpost
J
Java Code Geeks
博客园 - Franky
月光博客
月光博客
Blog — PlanetScale
Blog — PlanetScale
NISL@THU
NISL@THU
D
Docker
小众软件
小众软件
N
News and Events Feed by Topic
Microsoft Security Blog
Microsoft Security Blog
Y
Y Combinator Blog
A
Arctic Wolf
D
DataBreaches.Net
云风的 BLOG
云风的 BLOG
Forbes - Security
Forbes - Security
量子位
PCI Perspectives
PCI Perspectives
美团技术团队
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
I
InfoQ
Security Archives - TechRepublic
Security Archives - TechRepublic
有赞技术团队
有赞技术团队
腾讯CDC
P
Proofpoint News Feed
S
Security @ Cisco Blogs
G
Google Developers Blog
C
Cisco Blogs

SECURITY.COM

Daxin Returns: Stealthy Malware Resurfaces in Taiwan Alongside a New Backdoor The Detection Gap: MITRE ATT&CK T1140 and T1105 Humble Brag: Symantec® Data Center Security Achieves Common Criteria Certification GodDamn Ransomware: Latest Beast Rebrand Uses Malicious Driver to Disable Defenses Tips to Harden Your Air Gapped Environments The Visibility Challenge Nobody Asked For AV-TEST Gives Symantec® Endpoint Security Complete a Perfect Score The BYOVD Epidemic: How Attackers Are Weaponizing Trusted Windows Drivers to Kill Security 🎙️SECURITY.COM The Podcast: The Parasite in the Machine: Unmasking the Speagle Infostealer Your DLP Incident Backlog Owes You Closure Backdoor.Mistic: New Backdoor May be Linked to Ransomware Access Broker 5 Reasons Symantec® CBX Delivers Total Endpoint Visibility 8 XDR Questions From the Show Floor Another Year, Another Win: SE Labs® Recognizes Symantec® Endpoint Security Hidden in Teams: DragonForce Attackers Weaponize Microsoft Teams Relays to Stay Hidden Locking Down the Server 🎙️SECURITY.COM The Podcast: The Death of SIEM Threats Rise on a Tide of Global Unrest When Nation-States Stop Caring About Size Espionage Campaign Targeted Stock Exchange Executive for Five Months Data Security Is Having A Moment 5 Ways XDR Helps SOCs Act Faster 🎙️SECURITY.COM The Podcast: The Evolution of Cybersecurity PR with W2 Communications The Maximalism Trap: When More Becomes Too Much Symantec DLP Cloud and DPSM are the Power Couple Security Strategists Need Symantec DLP Cloud and DSPM are the Power Couple Security Strategists Need The Future of the Partnership: AI, Automation, and Ecosystems Fast16: Pre-Stuxnet Sabotage Tool Was Built to Subvert Nuclear Weapons Simulations 🎙️SECURITY.COM The Podcast: Iran’s Cyber Warfare Playbook: What Defenders Need to Know Right Now 5 Ways To Keep AI in Check Seedworm: Iran-Linked Hackers Breached Korean Electronics Maker in Global Spying Campaign Doing More with Less: How Government Agencies are Rethinking Cybersecurity Navigating Compliance and Insurance as a Competitive Edge Is SIEM Trying to Do Too Much? Every Defender Deserves Frontier AI The New Partner-Vendor Relationship DLP Made Easier on the Teams Running It The EU Digital Wallet: Why Waiting is Not an Option Trigona Affiliates Deploy Custom Exfiltration Tool to Streamline Data Theft Stopping Data Leaks at the Speed of AI Harvester: APT Group Expands Toolset With New GoGra Linux Backdoor How AI Increases the Load on Security Teams Web Traffic Visibility is the New Non-Negotiable The Agentic AI Tsunami is Here: Is Your Legacy IAM Sinking or Swimming? Technical Enablement vs. Marketing Noise Enterprise-Grade Security for All in 2026 Architecting for Margin Beyond the Initial Sale 🎙️SECURITY.COM The Podcast: A Brief History of Data Loss Prevention Symantec CBX Through the Paparazzi Lens The U.S. Navy’s Playbook for Cost-Controlled, Reliable Cybersecurity The Modern Threat Landscape and The Partner’s New Burden Symantec CBX Rocked RSAC 2026 Conference For Financial Services, a Wake-Up Call for Reclaiming IAM Control Cyber Legends: Behind the Scenes of CBX Built for This Moment (and All Those to Come)
The Next Identity Shift
2026-03-26 · via SECURITY.COM

Twenty-five years ago, the industry faced a fundamental shift when enterprise applications moved to the web. At the time, many organizations assumed each application would simply handle its own authentication and authorization. It didn’t take long to realize that model would not scale. 

Applications multiplied, identity stores became fragmented, and embedded security logic created operational complexity. Not to mention all-too-familiar user friction with redundant sign-ins. The architectural breakthrough was recognizing that identity and access policy had to move out of individual applications and into a shared infrastructure layer. 

This realization led to the development of web access management platforms like Netegrity SiteMinder, where user authentication and authorization were externalized and enforced through a unified policy architecture.

That shift became the foundation of enterprise web security. As a witness to the early days of web-scale application security, the architectural signals we’re seeing around AI systems today feel remarkably similar.

Large language models as a new runtime tier

Today’s conversation around AI often focuses on models, copilots, and developer productivity. But the deeper change is architectural. Large language models (LLMs) aren’t replacing enterprise applications—they’re becoming a new runtime tier within the application stack. 

For decades, enterprise applications behaved deterministically. Developers defined execution logic in advance, such as how the application should behave in different scenarios. Security teams could then review those code paths and enforce controls around largely predictable behavior. 

That model no longer holds. As LLMs become runtime decision engines inside applications, logic that determines what happens next moves from code into reasoning. Which systems to access, which APIs to call, and what data to retrieve can now be determined dynamically at execution time by a model, or by an agent using that model.

This break from deterministic systems shows enterprises are moving toward AI-orchestrated systems. And from there, toward multi-agent ecosystems where software entities reason, delegate, and act across systems

Agents authenticate to services, retrieve data, call APIs, spawn sub-agents, and interact with other agents across organizational boundaries. Increasingly, software will operate other software on behalf of users and business processes. 

When governance becomes the control point

As this shift unfolds, the security model that governed the previous generation of enterprise applications begins to break. The central problem is not simply authentication—it’s governance at runtime. 

Traditional access control is insufficient for autonomous actors that reason about what to do with the resources they can access.

When an autonomous system decides what systems to access, what data to retrieve, what tools to invoke, and what actions to take, the security question changes. It’s no longer enough to ask whether an identity can access a resource. The question becomes whether the agent’s objectives and behavior remain within its authorized boundaries.

As I explore in the accompanying white paper, Broadcom Agentic Identity Fabric: Securing the Agentic AI Enterprise, every major transition in enterprise computing moves the security perimeter. The web moved it to the session. The federation moved it to the assertion. APIs moved it to the token. Agentic AI moves it again—this time from human users with deterministic applications to autonomous entities making runtime decisions at machine speed.

That shift requires a new governance layer capable of managing identity, authorization, delegation, and observability across the full execution path of an AI system.

Identity middleware is the only layer that can handle this complexity at scale.

This governance layer emerges from the same architectural principles that secured previous generations of computing: identity as the control plane, policy as the decision engine, and distributed enforcement points across the infrastructure where actions occur. Together, these components form what I describe as an Agentic Identity Fabric: a unified trust layer governing how autonomous systems interact with enterprise capabilities. 

The next evolution in authorization

Traditional policy systems were designed for applications accessing resources in predictable ways. Autonomous agents behave differently—they pursue goals, interpret context, and dynamically decide how to accomplish tasks. One of the most important implications of today’s agentic architectures is that authorization itself must evolve. 

And we’ve only just scratched the surface here. To dive deeper into the architecture and design patterns behind the Agentic Identity Fabric, read the full whitepaper.

In a follow-up whitepaper, I’lll explore why policy management in the agentic enterprise must move beyond resource authorization and begin governing intent—and why it may become the most important revolution in enterprise authorization. 

The Next Identity Shift

Vadim Lander

Vadim Lander

Identity Security CTO & Distinguished Engineer