Zero-Trust

Model Context Protocol is the new API layer for AI agents — and enterprises are deploying it without understanding the security and governance implications. Cloudflare just published the reference architecture that should be required reading before any serious MCP deployment goes to production. The full Cloudflare enterprise MCP guide dropped April 14, backed by comprehensive developer documentation. It’s based on real-world data from 241 billion tokens processed for 3,683 users — not theory. ...

Zero trust isn’t just for humans anymore. Google Cloud has just handed every AI agent a digital identity card — and those cards come with cryptographic teeth. Announced at Google Cloud Next ‘26 in Las Vegas (April 22–24), the new Gemini Enterprise Agent Platform assigns every AI agent — whether built by Google or running as a third-party integration — a unique SPIFFE-based cryptographic identity backed by auto-rotating X.509 certificates that refresh every 24 hours. ...

At RSAC 2026, four separate keynotes from four separate companies arrived at the same conclusion without coordinating: zero trust must extend to AI agents. Microsoft, Cisco, CrowdStrike, and Splunk each named AI governance as the biggest gap in enterprise security. The problem, as Cisco’s Matt Caulfield put it, isn’t just authenticating an agent once and letting it run — it’s that “at any moment, that agent can go rogue.” Now two vendors have shipped architectures that actually try to solve it. Anthropic and Nvidia have each published zero-trust AI agent frameworks — and they solve the credential isolation problem in fundamentally opposing ways. ...

Zero-trust security was designed for humans. The assumptions baked into zero-trust frameworks — continuous verification, least-privilege access, never trust the network — were built around the behavior of human users accessing enterprise systems. AI agents are not human users. They don’t authenticate once and then work. They spawn dynamically, request broad permissions, communicate with dozens of downstream services, and operate at speeds that make human audit review impractical in real time. The security frameworks built for human users were not designed for this. ...

OpenClaw exploded onto the scene in November 2025 and became, by any measure, the fastest-growing open-source project in history. Within months, tens of millions of people were using it to automate their lives — running shell commands, managing files, connecting to messaging platforms, building new agent skills overnight. NVIDIA CEO Jensen Huang called it “the operating system for personal AI.” But explosive growth brings explosive risk. And on March 23, 2026, at RSA Conference in San Francisco, Cisco decided to do something about it. ...

RSA Conference opened its doors in San Francisco on March 23, 2026, and the message was impossible to miss before the first keynote even ended: agentic AI security is now the primary concern of the entire enterprise security industry. For years, RSAC has been the place where the security industry takes collective stock of where threats are heading. This year, every major vendor arrived with the same answer: AI agents are the new attack surface, and the industry is barely ready for it. ...

OpenClaw went viral for a reason — it’s the closest thing to a real personal AI operating system most developers have ever touched. But as Cisco’s own engineers put it at RSA Conference 2026 this week: the fastest-growing open source project in history is also a massive target. Their answer is DefenseClaw, an open-source security framework built specifically for OpenClaw deployments. What DefenseClaw Actually Does Cisco unveiled DefenseClaw on Monday at RSAC 2026, the San Francisco security conference that this year has turned almost entirely toward AI agent security. The framework ships with six distinct components designed to close the security gap that’s opened up as OpenClaw adoption has exploded: ...

Eighty percent of Fortune 500 companies are already running AI agents inside their organizations. Nearly a third of those agents weren’t officially sanctioned by IT. That’s the uncomfortable statistic Microsoft dropped Monday as it announced the general availability of Agent 365 — a $15/user/month control plane designed to govern the growing population of AI agents operating inside enterprise environments before they become what VentureBeat memorably called “corporate double agents.” The Problem Agent 365 Solves AI agents have crossed from experimental to operational. They’re filing tickets, managing calendars, writing code, processing invoices, and increasingly taking actions with real business consequences. Most organizations deployed them faster than they built governance frameworks around them. ...