惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Apple Machine Learning Research
Apple Machine Learning Research
AWS News Blog
AWS News Blog
Google DeepMind News
Google DeepMind News
U
Unit 42
博客园 - 叶小钗
博客园 - 聂微东
GbyAI
GbyAI
Stack Overflow Blog
Stack Overflow Blog
有赞技术团队
有赞技术团队
aimingoo的专栏
aimingoo的专栏
D
DataBreaches.Net
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
Jina AI
Jina AI
美团技术团队
The Cloudflare Blog
M
MIT News - Artificial intelligence
Microsoft Azure Blog
Microsoft Azure Blog
I
InfoQ
S
Schneier on Security
C
Check Point Blog
Project Zero
Project Zero
The Hacker News
The Hacker News
Scott Helme
Scott Helme
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
Cisco Talos Blog
Cisco Talos Blog
P
Privacy International News Feed
SecWiki News
SecWiki News
Latest news
Latest news
MongoDB | Blog
MongoDB | Blog
S
Secure Thoughts
Google Online Security Blog
Google Online Security Blog
F
Fortinet All Blogs
博客园 - 三生石上(FineUI控件)
H
Help Net Security
TaoSecurity Blog
TaoSecurity Blog
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
Last Week in AI
Last Week in AI
P
Privacy & Cybersecurity Law Blog
Forbes - Security
Forbes - Security
G
GRAHAM CLULEY
N
Netflix TechBlog - Medium
L
Lohrmann on Cybersecurity
A
About on SuperTechFans
T
The Exploit Database - CXSecurity.com
C
Cisco Blogs
PCI Perspectives
PCI Perspectives
大猫的无限游戏
大猫的无限游戏
T
Troy Hunt's Blog
H
Hacker News: Front Page
Vercel News
Vercel News

Blog on 1Password Blog

Why secure-by-design is an incentives problem, with Bob Lord | 1Password NIST and AI agents: 1Password’s approach to agent identity | 1Password Go beyond device health with External Checks in 1Password Device Trust | 1Password Natoma and 1Password help enterprises scale AI securely with governed agent access | 1Password New integrations between 1Password SaaS Manager and EPM | 1Password A first step toward post-quantum security | 1Password RSA 2026: Leading the way to secure agentic AI | 1Password How 1Password is Building a Culture of AI Fluency Through AI Champions | 1Password 1Password vs. Keeper Security: A comparison | 1Password 1Password vs. LastPass: Which is right for you? | 1Password Secure MCP credentials with 1Password and Runlayer | 1Password The next layer of AI security | 1Password Building the next chapter of Go-to-Market in EMEA | 1Password Automating SOC workflows with 1Password Enterprise Password Manager | 1Password Automated Provisioning hosted by 1Password: A Simpler, Smarter Way to Manage Access | 1Password Introducing 1Password® Unified Access: Identity Security for Humans and Their AI Agents | 1Password Next-generation automated provisioning, without compromising zero-knowledge security | 1Password Bitwarden vs. 1Password: Which password manager is right for you? | 1Password Password Manager for Families, Enterprise & Business | 1Password | 1Password How to wrangle SaaS contract renewals | 1Password Stop trusting consumer browsers with work credentials | 1Password IAM stops at sign-in. Your credentials do not. | 1Password Your digital pit crew: a 10-minute pre-race security checklist | 1Password 1Password Device Trust is coming to EMEA | 1Password The identity transformation: Analyst and CIO insights | 1Password Why now is the moment to join 1Password Go-To-Market | 1Password Identity and Accountability in the Age of AI Agents | 1Password How 1Password secures agent architectures | 1Password 1Password becomes the first global partner to transact through Express Private Offers in AWS Marketplace | 1Password Start Learning on 1Password Academy | 1Password Expanding Programmatic Access to 1Password | 1Password Zero knowledge vs. a malicious server: A look at ETH Zurich’s research | 1Password Agents are making filesystems cool again | 1Password Black History Month employee spotlight: Joseph Ojelade | 1Password 1Password's new benchmark teaches AI agents how not to get scammed | 1Password Streamlining SaaS onboarding and offboarding | 1Password 3 common SaaS Management challenges and how to avoid them | 1Password How 1Password Is Evolving Its Partner Ecosystem | 1Password How to build secure agent swarms that power production-grade autonomous systems | 1Password From magic to malware: How OpenClaw's agent skills become an attack surface | 1Password Solving the unsanctioned SaaS problem | 1Password 1Password and 60 Day Hustle: cybersecurity for small businesses | 1Password Security advisory for AI-assisted browsing interactions with the 1Password browser extension | 1Password It’s incredible. It’s terrifying. It’s OpenClaw. | 1Password Managing the risks of social logins | 1Password What’s the first security tool your small business should buy? | 1Password As AI Supercharges Phishing Scams, 1Password Introduces Built-In Protection | 1Password How to interview with confidence at 1Password | 1Password Five tips for successful SaaS Management | 1Password SaaS Manager | 1Password Why SaaS License Waste Is a Cost and Security Problem | 1Password AI is changing the IDE. With 1Password, security keeps up | 1Password How IT teams can get a handle on shadow IT | 1Password Bringing secure, just-in-time secrets to Cursor with 1Password | 1Password The Chasing Entropy Podcast Season One is in the Books | 1Password Now available via QBS Software: 1Password Enterprise Password Manager – MSP Edition | 1Password The role of credentials in the AI espionage campaign reported by Anthropic | 1Password The hidden offboarding step draining your budget | 1Password AWS and 1Password: Innovation in AI and beyond | 1Password Simplifying credential security on OpenAI Atlas | 1Password From Social Work to Social Impact: Growing at 1Password | 1Password Improving in-page notifications in the 1Password browser extension | 1Password Password Manager for Families, Enterprise & Business | 1Password | 1Password Now available via Renaissance: 1Password Enterprise Password Manager – MSP Edition | 1Password Behind the wheel at Oracle Red Bull Racing | 1Password Securing MCP servers with 1Password: Stop credential exposure in your agent configurations | 1Password What’s new in 1Password Enterprise Password Manager - Q4, 2025 | 1Password Belonging as a catalyst for high performance | 1Password Password habits are worsening, but leaders see a path to passwordless | 1Password A simpler, faster way to unlock 1Password | 1Password Oracle Red Bull Racing Episode 4, CIO Matt Cadieux | 1Password 70% of IT and security pros say SSO is falling short | 1Password 1Password's Phishing Survey: Avoid Holiday Phishing Scams | 1Password Securing the Win | 1Password SaaS optimization: How to maximize value and reduce costs | 1Password The enterprise AI crisis: Unsanctioned tools and unenforced policies | 1Password An Identity Security taxonomy for Agentic AI | 1Password Introducing new .env file support in 1Password environments | 1Password Speed and security: Mark Hazelton on protecting Oracle Red Bull Racing’s most valuable asset – its data | 1Password 1Password for Good: Giving back during cybersecurity awareness month | 1Password Utah Mammoth and Utah Jazz score with identity security | 1Password Oracle Red Bull Racing CEO and Team Principal | 1Password Three signs you need a SaaS Management Platform | 1Password Microsoft and Dropbox password managers are sunsetting: What it means and what to do next | 1Password From hackathon nerves to internship wins: Kavya’s journey at 1Password | 1Password 1Password now available in Comet, the AI-powered browser by Perplexity | 1Password 1Password announces new integration with Zscaler | 1Password Breaking the mold: Why more women should consider a career in sales | 1Password What security leaders need to know about mergers and acquisitions | 1Password Clickjacking: What it means for 1Password users | 1Password AI and security at Black Hat: 5 key takeaways from a security expert panel | 1Password Blog | 1Password Do any CISOs feel lucky? | 1Password How to lead with confidence in the AI era: a conversation with Nancy Wang, VP, Engineering | 1Password New Device Trust Check makes browser extension enforcement easier | 1Password Purpose, performance, and trust: Inside the culture powering 1Password’s next chapter | 1Password Now available on Pax8 Marketplace: 1Password Enterprise Password Manager - MSP Edition | 1Password The security principles guiding 1Password’s approach to AI | 1Password Choosing the right SaaS management platform for your business | 1Password Simplify access reviews with 1Password SaaS Manager | 1Password How great usability tripled Duke University's password manager adoption | 1Password
Closing the credential risk gap for AI agents using a browser | 1Password
info@1password.com (Nancy Wang) · 2025-10-08 · via Blog on 1Password Blog

AI agents increasingly are completing real tasks in the browser, acting on behalf of employees, and connecting to the same systems humans rely on to get work done. This introduces a new security problem: AI agents require credentials – passwords, API keys, and one-time codes – to operate. As agents proliferate, the risk surface increases and it brings a variety of identity and access management challenges:

  • No single source of truth for secrets management across agentic AI and employees

  • Difficulty of revoking credentials/items, especially long-lived ones

  • Proliferation of untracked/out-of-date credential grants

Agentic browsers, such as headless agentic browsers or those being driven by AI models without direct human supervision, raise the stakes even higher. As AI agents execute workflows, they get paused while agentic browsers wait for humans to input credentials. In an effort to avoid agents stopping mid-workflow, users often provide credentials directly into a browser-use AI app, which increases credential sprawl. As a result of submitting credentials to the agentic browser, users may expose those credentials to the agent and the underlying LLM, thus increasing the chances of leakage.

Instead of reducing friction, taking these shortcuts can undo years of progress in credential security. They scatter sensitive secrets across agents, prompts, and logs, and create blind spots that traditional IAM and PAM tools were never designed to handle.

The 1Password approach to solving secure access for AI agents using a browser

As we set out to securely enable agents to complete workflows, we knew upfront that we would not compromise on our security principles for AI to solve the problem. Namely:

  • Secrets stay secret

  • Raw credentials should never enter the LLM context

  • Transparency on what AI can see and what it can’t

  • Least privilege and minimum exposure by default

The core challenge was developing a solution for agents that need credentials as part of their workflow, yet not allowing that agent to have access to or visibility into the credentials being used. Overlaying that challenge is identifying the role of human-in-the-loop, which is critical to ensuring that all credential use is reviewed and approved for use by a human.

Introducing Secure Agentic Autofill

Secure Agentic Autofill injects credentials via the 1Password Browser Extension into a browser on behalf of an AI agent only when required and always authorized by a person.

Here’s how it works:

How Secure Agentic Autofill works.

Secrets stay secret & raw credentials never enter the LLM context

Secure Agentic Autofill delegates credential storage to 1Password. And to authenticate to websites, 1Password will fill those credentials for you, keeping it separate from the rest of the agentic workflow. As a result, the AI agent and underlying LLM never need to see nor handle the credentials being used to complete the workflow.

To accomplish this, 1Password developed a new protocol to securely request and deliver credentials directly into the browser context. This protocol, built on top of the securely-regarded Noise Framework, creates an end-to-end encrypted channel between the approving 1Password device and remote instance of 1Password’s extension in the browser. With this, the number of contexts that can see your credentials is minimized and your data is secured against a variety of long and short-term real-world risks.

When this happens, the agent informs 1Password that a credential is being requested. At that point, 1Password identifies the appropriate credentials, requests approval from the user via a human-in-the-loop workflow, and injects the credentials directly into the browser if, and only if, the human approves the access. In the case that multiple credentials for a specific site or app are present (e.g., two Amazon accounts), the user receives a prompt to determine which one should be used.

This approach removes the need for a human to include credentials as part of a prompt for a browser-use agent. To put this workflow into practice, we've partnered with Browserbase to build a UI for a browser automation workflow.

Connect 1Password to Browserbase.

Show what AI can and can’t see

When setting up Secure Agentic Autofill, 1Password delivers a prompt that clearly details what the agentic browser will be able to request from 1Password on your behalf. For example, with Secure Agentic Autofill, Browserbase is unable to access, see, or modify anything in a 1Password Vault without your approval. Furthermore, any request made for credentials must be approved by a human by default.

1Password access requested.

Secure Agentic Autofill for AI agents using a browser

Secure Agentic Autofill makes 1Password the secure source of truth for AI agents. Instead of scattering secrets across files, repos, or tokens, organizations can rely on 1Password to deliver credentials for AI agents executing workflows in a browser.

Core capabilities include:

  • Just-in-time credential delivery to the browser from the 1Password Browser Extension ensures that credentials are received over an end-to-end encrypted channel only at runtime.

  • Human-in-the-loop authentication provides real-time approval prompts before an agent signs in.

  • Least privilege limits agent access to only the credentials required for a specific workflow.

Browserbase: The first integration for Secure Agentic Autofill

The first implementation of Secure Agentic Autofill is available through Browserbase, a platform for building and running browser-based AI agents.

With this integration, organizations can:

  • Use 1Password as the single source of truth for AI agents that need credentials.

  • Securely provide agents with access to login credentials and passwords only when required.

  • Eliminate the need for hardcoding secrets.

  • Approve or deny requests for browser-use agents in real time.

For teams experimenting with AI-driven browser automation, this integration strikes a balance between productivity and security. By consolidating credential management in 1Password, enterprises reduce complexity while closing down pathways that attackers exploit.

Secure Agentic Autofill is available today in Early Access via an integration with Browserbase.

Get Early Access

Secure Agentic Autofill is available in early access on October 8, 2025, for 1Password customers using Browserbase.

1Password customers can get started at director.ai. Additional information can be found in the Browserbase documentation and 1Password documentation.