To ensure robust cybersecurity, it is essential for all agents within an organization—whether IT-authorized, LOB-launched, or third-party—to be governed by PKI identities from trusted agentic authentication vendors. Implementing strong security measures involves mandating that authorized agents only communicate with others that have verified identities. However, autonomous agents, similar to generative AI, may flout these security guidelines.
Kanwar Preet Singh Sandhu from Tata Consultancy Services emphasizes that agentic interactions undermine vital security principles. Enterprises must avoid scenarios where agents autonomously form communication channels, jeopardizing crucial protocols such as least privilege and segregation of duties.
To prevent these risks, IT systems should have clearly defined roles and restrict agents to specific tasks. For effective collaboration, organizations must adhere to strict protocols like Model Context Protocol (MCP) and Agent-to-Agent (A2A) standards to facilitate secure integration while mitigating potential security vulnerabilities.
Source link
