惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

D
DataBreaches.Net
Apple Machine Learning Research
Apple Machine Learning Research
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
S
SegmentFault 最新的问题
博客园 - 聂微东
罗磊的独立博客
W
WeLiveSecurity
博客园_首页
Scott Helme
Scott Helme
V
Visual Studio Blog
T
The Exploit Database - CXSecurity.com
G
Google Developers Blog
大猫的无限游戏
大猫的无限游戏
Latest news
Latest news
L
Lohrmann on Cybersecurity
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
A
About on SuperTechFans
F
Full Disclosure
Y
Y Combinator Blog
D
Darknet – Hacking Tools, Hacker News & Cyber Security
博客园 - 司徒正美
博客园 - Franky
C
CXSECURITY Database RSS Feed - CXSecurity.com
F
Fortinet All Blogs
Blog — PlanetScale
Blog — PlanetScale
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
阮一峰的网络日志
阮一峰的网络日志
S
Schneier on Security
雷峰网
雷峰网
博客园 - 【当耐特】
P
Privacy International News Feed
C
Cyber Attacks, Cyber Crime and Cyber Security
Engineering at Meta
Engineering at Meta
aimingoo的专栏
aimingoo的专栏
MongoDB | Blog
MongoDB | Blog
J
Java Code Geeks
T
Tor Project blog
V
V2EX
爱范儿
爱范儿
C
Check Point Blog
T
Threatpost
Project Zero
Project Zero
量子位
V
Vulnerabilities – Threatpost
Know Your Adversary
Know Your Adversary
I
Intezer
G
GRAHAM CLULEY
P
Privacy & Cybersecurity Law Blog
GbyAI
GbyAI
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com

Cloud Security Alliance

SearchLeak: Copilot Data Exfiltration Exploited | CSA Zero-Trust AI Governance for Multi-Agent Systems | CSA Dangling CNAMEs: Hidden Cloud Risk | CSA Agentic Payments in Financial Services | CSA Mythos and the Future of Cybersecurity | CSA AI-Driven Cloud Risk: Defenders Lose Ground | CSA Financial Services Industry Shifts from AI Adoption to | CSA CSAI Foundation Announces RiskRubric V2 as the Next Key | CSA RiskRubric Updates: AI Risk Assessment | CSA Over 80% of Organizations that Miss 24-Hour Patch Window Report | CSA ORCHIDEAS & MAESTRO: Secure AI Design | CSA Top 6 Claude Security Risks to Watch | CSA Cloud Cost Optimization in 2026 | CSA HIPAA Rule Overhaul in 2026 | CSA AI-Driven Exploits Outsmart Detection | CSA MCP Risks CISOs Should Prepare For | CSA AI Governance for Trust and Compliance | CSA MTTP: Patch Cycles Too Slow | CSA Cloud Security Evolution: Security Teams Lead | CSA Misconfigurations Break Customer Trust in Apps | CSA Taming Shadow AI: C-Suite Strategies | CSA Agentic AI Threats: Five Powers | CSA AIUC-1: Agentic AI Governance | CSA 2026 Threat Report for CISOs | CSA Securing AI in AWS: Runtime Detection & Response | CSA SLMs, LLMs, and the DSPM Difference | CSA OT Security Timeline: Mythos and Patch Pace | CSA Blast Radius and Cloud Threat Detection | CSA State of AI Cybersecurity 2026: 92% Concerned | CSA AI in MDR for Franchise & Multi-Location Ops | CSA AI Regulation: Identity and Authorization Gap | CSA MITRE ATT&CK for Cloud: Detection Coverage Guide | CSA Shadow AI Agents: The Insider Threat | CSA Medical Device Breaches Reveal Cloud Security Gaps | CSA AISMM: AI Security Maturity Model for Cloud | CSA Globee® Awards for Artificial Intelligence (AI) Honors Cloud | CSA Patching Smarter for Mythos Security | CSA SDP v3: Identity-First Zero Trust for AI | CSA AI-Ready Security Documents Beyond STIX, OSCAL, and SARIF | CSA Penetration Testing for ISO 42001 & Trust | CSA AI Agent Posture: Data-First Security Guardrails | CSA AI Agents Go Beyond Output: Enterprise Security | CSA AI Agent Security Starts with Scope Control | CSA Identity Spoofing vs. Identity Abuse | CSA AARM: Securing the Agentic Runtime | CSA Securing the Agentic Control Plane | CSA CSAI Foundation Announces Key Milestones to Secure the Agentic | CSA Catastrophic AI Risk Controls | CSA Cloud to AI: Building Secure Programs | CSA Identity in AI Era: Zero Trust's First Pillar | CSA SDLC Visibility: Securing Multi-Cloud Development Lifecycles | CSA Cloud Risk: Top 3 Threats & AI Tools | CSA AI Agent Identity Is Solved Backwards | CSA 8 Truths About Cloud Privilege Risk | CSA AI Governance: Mature Programs | CSA Agent Access Management: Data-First Security | CSA Glasswing: AI-Driven Security for Safer Software | CSA Runtime Security: Detection & Real-Time Cloud | CSA Identity as the OS for AI Security | CSA Cloud Misconfigurations Drive Attacks at Scale | CSA Sensing AI Behavior with the WBSC Probe Library | CSA An Actionable Guide to GDPR Compliance for Startups | CSA Cloud Security LIVE 2026: AI Risk & Trust | CSA Shadow AI Agents: Enterprise Governance | CSA Rethinking Non-Human Identity Security | CSA New Cloud Security Alliance Survey Reveals 82% of Enterprises Have Unknown AI Agents in Their Environments More Than Half of Organizations Experience AI Agent Scope | CSA SANS Institute, Cloud Security Alliance, [un]prompted, and OWASP | CSA AI Agents Are Talking: Are You Listening? | CSA Software Supply Chain Security Needs an Upgrade Choosing the Right AI Standard: 7-Point Guide | CSA Audience-Driven Authorization for AI Agents | CSA A CISO's Guide to Cloud Security Architecture | CSA Who’s Behind That Action? The AI Agent Identity Crisis SSCF Adoption for SaaS Security | CSA Mythos and the Vulnpocalypse: Cloud Defenses | CSA AI Security Risks and Data Visibility | CSA From Compliance to Credibility with CAIQ/CCM | CSA The State of Cybersecurity in the Finance Sector: Six Trends to Watch EU AI Act Compliance with prEN 18286 & ISO 42001 | CSA AI Security in the Cloud: Exposure Management | CSA Rethinking Incident Response as Engineering System | CSA Defense Depends on the Creator: AI Security | CSA ATF: Zero Trust for AI Agents | CSA Cybersecurity Needs a New Data Architecture | CSA CSA STAR v4.1 Updates for Cloud Security | CSA Unstructured Data Surges as Enterprises Struggle to Maintain | CSA SC Media Names Cloud Security Alliance’s Trusted AI Safety | CSA Exposed AWS Key Leads to Full Account Takeover | CSA Post-Quantum Cloud Migration for CSA Members | CSA The Agentic Trust Deficit: MCP's Authentication Vacuum | CSA More Than Two-Thirds of Organizations Cannot Clearly Distinguish | CSA AI Cybersecurity 2026: Insights from 1,500 Leaders | CSA Three-Body Security: Data, AI & Identity | CSA IAM as Safety for AI-Controlled Systems | CSA Kubernetes Cost Savings and Security Debt | CSA Code to Cloud Security: Unified Exposure Management | CSA Retail Misconfigurations Attackers Exploit | CSA Rethinking Authorization for the Age of Agentic AI | CSA Enterprise AI: Guardrails to Governance | CSA
AI Identity Security Compliance Checklist | CSA
2026-03-18 · via Cloud Security Alliance

Agentic AI is redefining identity security. While 91% of organizations are deploying autonomous agents, nearly half lack formal oversight. To bridge this gap, enterprises must integrate agents into existing identity frameworks, applying the same rigorous standards used for humans.

This checklist provides a unified strategy to move from shadow AI to a secure, enterprise-scale architecture by focusing on two pillars:

1. Secure production-ready AI agents: Move from AI pilot to secure production faster with agent interactions tied to human intent that are fully auditable.

2. Govern all agents through a unified control plane: Establish centralized visibility and control to secure the end-to-end lifecycle of agents across your environment.

Secure production-ready AI agents

Authenticate

Authentication

Traditional Approach: Agents act under a shared, generic identity (e.g., service account) with no direct link to a human user.

Unified Identity Platform Capability: Enforce sign-in via standard protocols (OIDC/ OAuth 2.0) to help ensure every agent session is initiated by a verified human identity. This prevents agents from acting under shared, generic identities and helps ensure accountability.

Authorize

Fine-grained authorization

Traditional Approach: Agents inherit broad, "all-or-nothing" read access to knowledge bases (over-privileged).

Unified Identity Platform Capability: Implement granular, relationship-based authorization for Retrieval-Augmented Generation (RAG) systems so agents only retrieve resources the specific user is permitted to see. By mapping agent scopes to the authenticated human’s permissions, you help eliminate privilege escalation, even if an agent's logic is compromised.

Human-in-the-loop authorization

Traditional Approach: Critical actions are either fully autonomous (risky) or blocked synchronously (slow/disruptive).

Unified Identity Platform Capability: Require async approval for sensitive operations (e.g., deleting a database or spending >$1,000) using CIBA (Client-Initiated Backchannel Authentication) with Rich Authorization Request (RAR). This sends a real-time mobile authorization request for a specific action, creating a verifiable audit trail for security teams.

Token exchange

Traditional Approach: The chain of user identity is broken as the agent calls downstream APIs and systems.

Unified Identity Platform Capability: Share the user’s identity in a more secure manner across different applications and trust domains. This maintains a verifiable link between the agent's actions and the human user, keeping the chain of user identity intact as the agent calls downstream APIs.

Secure

Token vaulting

Traditional Approach: Tokens stored in configuration files or source code, creating risks of leakage in logs or LLM conversational outputs.

Unified Identity Platform Capability: Help eliminate credential leakage by securely storing OAuth tokens for third-party apps, APIs and MCP servers in a dedicated vault. Automatically refresh credentials so they do not appear in application code, logs, or LLM conversational outputs.

Govern all agents through a unified control plane

Discover

Agent detection & registry

Traditional Approach: Manual spreadsheets; blind spots regarding "Shadow AI" and rogue agents.

Unified Identity Platform Capability: Discover rogue agents across cloud and SaaS platforms. This reduces "Shadow AI" blind spots where unmanaged, over-privileged agents can otherwise act as invisible entry points for attackers. Then, bring agents into your user directory and assign a unique identifier, owner, and documented purpose for each agent. Explicitly defining ownership and intent eliminates anonymity, making it possible to audit agent behavior.

Onboard

Privileged credentials

Traditional Approach: Static credentials used indefinitely; rotation happens only after a breach.

Unified Identity Platform Capability: Secure agent credentials via a centralized vault and rotate them automatically (e.g., every 90 days). Treating secrets as ephemeral rather than static reduces the exploitation window for compromised credentials.

Access control

Traditional Approach: Coarse-grained roles where agents inherit broad user permissions.

Unified Identity Platform Capability: Implement granular, least-privilege permissions specifically tailored to each agent. Defining agent-specific access policies helps prevent lateral movement into sensitive systems outside its immediate scope.

Lifecycle management

Traditional Approach: Ineffective onboarding and manual reviews; obsolete agents retain access indefinitely.

Unified Identity Platform Capability: Automate onboarding, access reviews, certifications, and deprovisioning to validate that permissions remain aligned with task requirements, helping maintain security across every stage of the agent's existence.

Protect

Universal logout

Traditional Approach: Manual investigation and fragmented revocation across different apps.

Unified Identity Platform Capability: Implement immediate, cross-system revocation of sessions and access tokens when a threat is detected. Rapid containment helps prevent lateral movement across integrated SaaS and APIs while providing detailed logs for investigation.

Bringing it all together: identity as the foundation of control

In the age of autonomous AI, identity serves as the central control plane that unifies visibility, control, and governance of human and non-human identities across your environment. By treating agents as first-class identities, organizations can bridge the governance gap and scale AI with confidence.