Stop Building Custom Agent Identity
Sarah Cecchetti
fwd:cloudsec North America 2026 · Day 1
The rapid proliferation of AI agents in enterprise environments presents a critical, yet often overlooked, security challenge: how do these autonomous entities establish and manage their identity in a secure, auditable, and scalable manner? This talk, "Stop Building Custom Agent Identity," delivered by Sarah Cecchetti and her AI agent, Claudrey Hepburn, tackles this pressing issue head-on. It argues forcefully against the prevailing anti-patterns of custom, ad-hoc, or human-impersonating identity solutions for AI and advocates for the immediate adoption of existing, standards-based identity protocols.
AI review
Cecchetti correctly diagnoses a real and urgent problem — the identity and authz stack was built to exclude bots, and we're now bolting AI agents onto it with duct tape and prayers — and she backs the diagnosis with a coherent, standards-grounded prescription. The Claudrey Hepburn LLC bit is genuinely funny and makes the abstract concrete in a way that will stick with an audience.