An Intellyx Brain Candy Brief from KubeCon NA 2025
CyberArk is a well-established access and identity management and user behavior analytics vendor that announced their new Secure AI Agents at KubeCon for agent-to-agent communication.
The firm has some history in the Kubernetes world, and donated the now-ubiquitous and graduated cert-manager project to CNCF in 2020.
We already know human users can be certified with access tokens and launch workloads that make calls to other systems, with access policies assigned to the identity of that user. So when you think about it, agents are really just workloads that can talk to each other over distributed systems.
What does it mean for us to give a universal identity that works everywhere irrespective of where the workload is deployed?” said Sitaram Iyer, Area VP Emerging Technologies, Global Architects, CyberArk. “If workloads need to talk to workloads, we need to figure out a seamless way to do secretless authentication, by issuing each agent or workload just-in-time identity with least privileged access.”
CyberArk leverages the emerging ANS (Agent Name Service) standard to offer clear ways to identify agents within the system, so they can securely communicate without disclosing secrets over the wire, by using a feature called Secure Workload Access (or SWA), based on the also-popular cloud native SPIFFE open source project.
Copyright ©2025 Intellyx B.V. Intellyx is an industry analysis and advisory firm focused on enterprise digital transformation. Covering every angle of enterprise IT from mainframes to artificial intelligence, our broad focus across technologies allows business executives and IT professionals to connect the dots among disruptive trends. At the time of writing, CyberArk is not an Intellyx customer. No AI was used to write this article. To be considered for a Brain Candy article or event visit, email us at pr@intellyx.com.
