As Ai Agents Spread, 1password's New Tool Tackles A Rising Security Threat

David Gewirtz / Elyse Betters Picaro / ZDNET

Follow ZDNET: Add america arsenic a preferred source connected Google.

ZDNET's cardinal takeaways

• AI agents request credentials, creating a increasing endeavor risk.
• 1Password launches Unified Access to negociate quality and AI secrets.
• Platform discovers, secures, and audits credentials crossed environments.

Let's talk for a infinitesimal astir AI agents. You tin deliberation of them arsenic integer virtual labor who are tasked pinch performing definite jobs. In fact, you tin make a reasonably bully affinity betwixt AI agents moving astir your web and quality workers.

Back successful nan days earlier Zoom, I utilized to do a batch of business traveling. At nan time, I had a feline named Sammy. I had to time off her location whenever I went connected 1 of these trips. After her first acquisition successful a kennel (which did not spell well), I vowed to ne'er kennel her for a travel ever again.

Also: Is your AI supplier a information risk? NanoClaw wants to put it successful a virtual cage

Instead, I hired a friend of a friend to travel into my flat a fewer times a time to provender her, play pinch her, and support her company. Even though this believe was necessary, I ever had immoderate large worries. First, Sammy was not an extracurricular cat. What if nan feline caregiver fto her out? What if nan feline caregiver decided to muck astir pinch my stuff?

I ever sewage nan cardinal backmost from nan feline watcher erstwhile I sewage home, but did they make a copy? Should I alteration nan fastener aft nan trip? For a while, I flew monthly. Would I request to alteration nan fastener each month? Fortunately, thing went wrong. But nan interest was there.

These are nan types of problems we're starting to look pinch AI agents (except overmuch worse). For agents to do their jobs, they request to person entree to galore cardinal systems and information sets. They request to beryllium capable to log in. They request entree keys, passwords, API keys, and credentials of each sorts.

The large hairball of a problem is that location haven't been unified systems for managing supplier access. Instead, developers person been pasting API keys correct into their code, putting passwords into matter files, and moreover sometimes pasting full credential sequences into AI prompts.

1Password, galore agents

I'm not nan only personification waking up successful nan mediate of nan nighttime successful a acold sweat worrying astir nan implications of this.

The folks astatine 1Password person been noodling connected this problem for rather immoderate time. Today, it is announcing Unified Access, an AI supplier credential guidance instrumentality that is designed to thief organizations securely negociate nan entree power challenges that armies of AI agents introduce.

Also: AI agents are fast, loose, and retired of control, MIT study finds

The Unified Access offering is disposable now (with nan objection of an audit capability, which is coming soon). It provides devices to discover, secure, and yet audit web entree crossed some quality and AI identities.

If you deliberation this is akin to Microsoft's Agent 365 personality guidance merchandise announced past week, you aren't wrong. I foretell we'll spot more. Once companies started to wide deploy agents, nan ID guidance situation became reasonably instantly apparent.

I've been noticing a inclination recently. AI is moving truthful fast, and companies are engineering truthful quickly to accommodate and lick emerging problems, that we're seeing regular cases of parallel evolution. As a caller problem emerges because of a erstwhile innovation, a bunch of companies simultaneously denote solutions designed to hole nan emerging problem. That's nan lawsuit now pinch agentic credential management.

1Password's attack is considerably little Microsoft-centric than Agent 365, but it besides focuses connected protecting credentials, secrets, and instrumentality identities arsenic AI systems statesman performing actions crossed endeavor environments.

AI agents present caller personality and credential risks

"AI take is reshaping our threat model," said Heather Cannon, Director of Security astatine DigitalOcean. Think astir those 7 words. That's a wow correct there. David Faugno, CEO of 1Password, amplifies that thought, saying, "Agents are now operating wrong existent accumulation environments."

That's nan challenge. AI devices are quickly moving from experimental curiosities to afloat empowered virtual workers successful accumulation environments. They telephone APIs, execute workflows, and entree infrastructure connected behalf of users. These automated systems often trust connected nan aforesaid credentials developers usage to entree soul APIs, infrastructure, and endeavor data.

Also: OpenClaw is simply a information nightmare - 5 reddish flags you shouldn't disregard (before it's excessively late)

Cannon says, "For DigitalOcean, it's nary longer only astir individuals mishandling credentials. We request clear visibility into which AI systems are operating crossed our environment." She says that 1Password's caller solution tin thief it amended understand and govern AI usage, pinch nan extremity of reducing alleged protector AI risks, and standard AI take successful a measurement that's endeavor safe.

Discovering embedded risks enterprise-wide

Confusingly, 1Password calls its caller offering a "platform model." This is not an AI model, arsenic successful ample connection model. Instead, it is really a level offering that uses a three-step paradigm: observe existing agents and credentials, unafraid them done a centralized vault infrastructure, and supply beardown audit trails describing really entree is used.

The find constituent is meant to observe existing flaws, places wherever keys and passwords are already deployed and request to person amended guidance controls. The level identifies AI devices and supplier activity crossed endpoints, browsers, and section environments. Using nan devices provided by 1Password, information teams tin observe exposed credentials, including plaintext situation files and unencrypted SSH keys.

Also: Why endeavor AI agents could go nan eventual insider threat

Of course, to transportation retired this find process enterprise-wide, you person to assistance 1Password's strategy immoderate level of heavy enterprise-wide access. That whitethorn beryllium basal if you want to rein successful nan AI entree excesses of nan past fewer years, but it is besides a monolithic consequence each connected its own.

Centralized credential vault replaces embedded secrets

In an email Q&A, Nancy Wang, CTO of 1Password, told ZDNET, "Instead of storing credentials locally aliases embedding them successful scripts, credentials tin beryllium securely retrieved from nan vault and utilized only astatine nan infinitesimal they are needed."

The level centralizes credentials wrong a unafraid vault alternatively of embedding secrets straight successful prompts, scripts, aliases configuration files.

Also: Nvidia bets connected OpenClaw, but adds a information furniture - really NemoClaw works

Wang says, "Developers reference secrets done 1Password alternatively than embedding them straight successful codification aliases situation variables. At runtime, 1Password resolves nan reference, enforces policy, and delivers nan credential only to nan process that needs it, pinch each entree arena logged according to organizational policy."

Security teams tin spot which credential was used, which strategy requested it, and nan personality responsible for nan action. The thought is to trim reliance connected API keys and secrets that stay valid indefinitely.

Integrations pinch AI developer and infrastructure platforms

Of course, gaining entree to each instrumentality a developer aliases endeavor mightiness usage is simply a large job. Many devices don't activity and play good pinch others. To antagonistic this problem, 1Password is teaming up pinch galore instrumentality and endeavor vendors to embed support straight successful their offerings.

Initial collaborations announced astatine motorboat see AI developer devices specified arsenic Cursor and GitHub, on pinch unreality and developer platforms, including Vercel.

"As agentic coding devices go portion of really modern teams build and vessel software, information needs to merge straight into nan developer workflow," said Talha Tariq, CISO astatine Vercel. "Through our business pinch 1Password, we're making it easier for developers to entree credentials securely wrong nan devices and environments they already use, truthful they tin move quickly without compromising connected sound information practices."

Also: AI agents of chaos? Research shows really bots talking to bots tin spell sideways fast

Cursor and GitHub usage nan 1Password offering to unafraid developer workflows crossed IDEs, unreality sandboxes, and CI/CD pipelines. Extensions are now disposable for Cursor agents and GitHub Actions, pinch much expected.

1Password is besides moving pinch players who connection AI infrastructure, supplier power planes, MCP gateways, and AI browsers, pinch implementations to beryllium announced soon.

1Password's CTO answers our questions

I asked 1Password a number of questions. CTO Wang was benignant capable to reply them, apparently while she was connected a plane. We decidedly admit her going supra and beyond, literally.

In consequence to a mobility astir nan 1Password personification interface, she told me, "Yes, it's nan aforesaid interface that group cognize and love. Through Unified Access, we're extending nan interfaces group already use, for illustration nan 1Password extension, CLI, and APIs, into nan environments wherever agents really run."

I tried to nail down nan relationship experience. Where, exactly, are nan credentials managed and how? She said, "The measurement agents interact pinch 1Password extends that acquainted acquisition into nan environments wherever agents operate. At a precocious level, we deliberation of agents arsenic a caller people of personality that needs unafraid entree to credentials successful bid to enactment connected behalf of users aliases systems."

Also: How I switched password managers without losing a azygous login

She said, "In this environment, 1Password serves arsenic nan trusted strategy of grounds for those credentials. Rather than embedding secrets straight successful prompts, code, aliases supplier memory, agents tin retrieve credentials from nan 1Password vault erstwhile they request them."

In consequence to really this attack will beryllium incorporated successful code, I was told, "Developers reference secrets done 1Password alternatively than embedding them straight successful codification aliases situation variables. At runtime, 1Password resolves nan reference, enforces policy, and delivers nan credential only to nan process that needs it, pinch each entree arena logged according to organizational policy."

If you deliberation backmost to nan opening of nan article, and my interest astir sharing keys pinch my cat's pet sitter, callback that I obsessed complete nan mobility of whether I should alteration nan fastener aft each trip.

In a virtual world, that becomes possible. Wang told me, "If a credential needs to beryllium rotated, it tin beryllium done successful nan vault, and each agents pinch entree to nan vault will person entree to nan caller credential, truthful it doesn't request to beryllium updated connected an agent-by-agent basis."

Fundamentally, 1Password is building a azygous root of truth for credentials successful nan agentic space. It's analyzable arsenic heck, but since we're ne'er going to beryllium capable to put nan agentic ghost backmost successful its bottle, information devices for illustration Unified Access and Agent 365 can't travel excessively soon.

What astir you?

Are AI agents already moving wrong your organization's workflows, aliases are you still experimenting pinch them? How are you managing nan credentials and entree those agents require? Do you deliberation centralized vault approaches for illustration 1Password's Unified Access and Microsoft's Agent 365 are heading successful nan correct direction?

Also: 1Password hikes its prices: Here are your free aliases inexpensive alternatives

Are you concerned astir agents utilizing nan aforesaid credentials arsenic quality developers, aliases do you spot that arsenic manageable pinch nan correct tooling? How overmuch visibility do you deliberation companies really person coming into what their automated systems are doing? Let america cognize successful nan comments below.

You tin travel my day-to-day task updates connected societal media. Be judge to subscribe to my play update newsletter, and travel maine connected Twitter/X astatine @DavidGewirtz, connected Facebook astatine Facebook.com/DavidGewirtz, connected Instagram astatine Instagram.com/DavidGewirtz, connected Bluesky astatine @DavidGewirtz.com, and connected YouTube astatine YouTube.com/DavidGewirtzTV.