InfoQ - Security - Articles https://www.infoq.com InfoQ Security Articles feed Article: Securing Autonomous AI Agents on Kubernetes: Trust Boundaries, Secrets, and Observability for a New Category of Cloud Workload https://www.infoq.com/articles/securing-autonomous-ai-agents-kubernetes/?utm_campaign=infoq_content&utm_source=infoq&utm_medium=feed&utm_term=Security-articles <img src="https://res.infoq.com/articles/securing-autonomous-ai-agents-kubernetes/en/headerimage/securing-autonomous-ai-agents-kubernetes-header-1777378848477.jpg"/><p>Autonomous AI agents break Kubernetes security assumptions with dynamic dependencies, multi-domain credentials, and unpredictable resource use. This article covers production-tested patterns: Job-based isolation, Vault for scoped short-lived credentials, a four-phase trust model from shadow mode to autonomous operation, and observability for non-deterministic reasoning cycles.</p> <i>By Nik Kale</i> Agents Kubernetes Security Observability Cloud Development Architecture & Design AI, ML & Data Engineering DevOps article Fri, 01 May 2026 09:00:00 GMT https://www.infoq.com/articles/securing-autonomous-ai-agents-kubernetes/?utm_campaign=infoq_content&utm_source=infoq&utm_medium=feed&utm_term=Security-articles Nik Kale 2026-05-01T09:00:00Z /articles/securing-autonomous-ai-agents-kubernetes/en Article: The DPoP Storage Paradox: Why Browser-Based Proof-of-Possession Remains an Unsolved Problem https://www.infoq.com/articles/dpop-key-storage-unsolved-problem/?utm_campaign=infoq_content&utm_source=infoq&utm_medium=feed&utm_term=Security-articles <img src="https://res.infoq.com/articles/dpop-key-storage-unsolved-problem/en/headerimage/dpop-key-storage-unsolved-problem-header-1777296488937.jpg"/><p>DPoP closes a real gap in OAuth 2.0. Sender-constrained tokens are a meaningful upgrade over bearer tokens for any client that can implement them. But RFC 9449's silence on browser key storage creates the need for an architectural decision that each team must confront deliberately — there is no safe default that works everywhere.</p> <i>By Dhruv Agnihotri</i> Backend For Frontend IndexedDB Web Development Cloud Security Cryptography Web Browser Development Architecture & Design article Thu, 30 Apr 2026 09:00:00 GMT https://www.infoq.com/articles/dpop-key-storage-unsolved-problem/?utm_campaign=infoq_content&utm_source=infoq&utm_medium=feed&utm_term=Security-articles Dhruv Agnihotri 2026-04-30T09:00:00Z /articles/dpop-key-storage-unsolved-problem/en