In AI-powered software program growth, 1Password argues “just-in-time credentials are the one viable safety mannequin.”
AI brokers are taking part in an rising function in software program growth. They’re additionally creating a bunch of recent safety considerations.
Toronto-based 1Password has expanded its work with Silicon Valley AI large OpenAI in an try to assist companies deploy autonomous AI brokers to securely construct merchandise.
“As coding brokers tackle extra of the software program growth lifecycle, the query isn’t whether or not to offer them entry, however how.”
Nancy Wang, 1Password
Like different brokers or customers, OpenAI’s software program engineering assistant Codex requires login credentials to faucet into databases, utility programming interfaces, and deployment pipelines. Per 1Password, “that entry is usually managed by copying credentials into native recordsdata, passing them by prompts, or hardcoding them into repositories the place they are often simply exfiltrated.”
1Password claims it has developed a safer strategy: the cybersecurity firm introduced a brand new Codex integration right now that enables builders to grant Codex entry to credentials immediately inside their workflows with out placing them immediately into prompts or recordsdata.
The corporate is doing this by its new 1Password Environments Mannequin Context Protocol (MCP) Server for Codex, which it claims “ensures secrets and techniques by no means go away 1Password” with the assistance of a safe runtime setting the place these credentials are “mounted, used, and discarded,” with consumer authentication required at entry.
“As coding brokers tackle extra of the software program growth lifecycle, the query isn’t whether or not to offer them entry, however how,” 1Password CTO Nancy Wang mentioned in a information launch. “A credential that persists is already compromised. That’s why just-in-time credentials are the one viable safety mannequin for AI-native growth.”
RELATED: 1Password launches new platform to rein in firms’ AI brokers
Based in 2005 and formally often called AgileBits, 1Password is one in all Canada’s Most worthy tech firms. It sells identification safety and entry administration software program that helps people and company shoppers like Asana, Canva, Figma, GitHub, Hugging Face, Notion, Salesforce, Stripe, and Wiz.
Lately, 1Password has developed from a consumer-facing password supervisor to a broader digital safety platform for companies. The 1,400-person firm, which surpassed $400 million USD in annual recurring income final 12 months whereas remaining free money flow-positive, now serves greater than 180,000 firms, shops 1.3 billion human and machine credentials, and is utilized by a million builders.
As 1Password CEO David Faugno advised BetaKit final 12 months, 1Password sees “an enormous alternative” in serving to companies navigate the safety concerns related to AI, and has been leaning into this “aggressively,” together with by way of its not too long ago launched Unified Entry Platform.
Function picture courtesy 1Password.