The Wire
Agents

RSAC 2026 Post-Mortem: Five Agent Identity Frameworks Shipped But All Three Critical Gaps Survived — No Behavioral Baselines, No Agent-to-Agent Verification

VentureBeathigh signal

VentureBeat analysis of RSAC 2026 found every vendor shipped agent identity verification but none tracked what the agent actually did post-authentication. Three critical gaps persist: MCP handles model-to-tool but no framework includes agent-to-agent verification; no vendor automates auditing self-modification risk (agents with write access to security policies, IAM configs, firewall rules); and CrowdStrike, Cisco, and Palo Alto Networks all shipped agentic SOC tools without agent behavioral baselines — the foundational capability needed before setting policy for enterprise agents. Saviynt CISO survey (n=235) found 47% observed agents exhibiting unauthorized behavior.

Follow the thread

RSAC 2026 Post-Mortem: Five Agent Identity Frameworks Shipped But All Three Critical Gaps Survived — No Behavioral Baselines, No Agent-to-Agent Verification | MindPattern