Authentication & Identity

Foxit, a leading provider of innovative PDF and eSignature products and services, helping knowledge workers to increase their productivity and do more with documents, today announced the launch of Smart Redact Server, a powerful new AI-driven platform built to automate the redaction of sensitive data at scale across enterprise environments. Designed for organizations that manage large volumes of regulated content, the solution enables legal, financial, healthcare, and compliance teams to detect and redact classified, personally identifiable (PII), and other sensitive information quickly, accurately, and securely. Smart Redact Server equips teams tasked with data privacy and regulatory compliance, including (but not limited to) enterprise administrators, legal and compliance departments, financial institutions, and healthcare organizations with a fast, reliable, and scalable way to identify and redact sensitive content, whether it’s personally identifiable information (PII), financial records, or protected health data. Building on the success of Foxit’s Smart Redact feature within its flagship PDF Editor+ platform, Smart Redact Server extends these capabilities beyond individual documents to an enterprise-grade, cloud-native solution. This new offering leverages the proven redaction technology of PDF Editor+ and enhances it with robust features, including batch document processing, scheduled compliance scans, multi-cloud integration, and team collaboration tools. Key Features:

• AI-powered detection and redaction of PII, financial, legal, and medical data with over 99% accuracy
• Batch processing and scheduled scans to automate compliance workflows and reduce manual effort
• Support for 47 file types, including PDF, DOCX, scanned images, HTML, JSON, XML, and more
• Cloud-native SaaS platform with integration across OneDrive,

Read Article

With enterprise agentic automation fast becoming a reality, CIAM providers are racing to address the unique requirements posed by autonomous AI agents. To authenticate and interact with a third-party B2B application on behalf of a human user, AI agents need programmatic and persistent access, typically requiring token-based authentication and complex OAuth flows. Frontegg’s recently released Frontegg.ai takes an end-to-end approach, delivering out-of-the-box solutions for advanced use cases that require the integration of multiple B2B applications. The AI agent and all required third-party integrations can be created and configured in the Frontegg.ai dashboard in just a few minutes. The code for the authentication interface is automatically generated for both web and mobile applications and the platform handles the creation, refreshing, and deletion of all OAuth access tokens. This end-to-end authentication and authorization functionality can be integrated into the agent code with just a few lines. One of the innovative products being developed using Frontegg.ai is an analytics support agent that intelligently creates visualizations from source data, based on the requirements of different business personas and communicates them on a regular basis. The idea is that rather than manually visiting a portal to configure dashboards, users will interact with the AI agent outside of the portal as an intelligent analytics assistant. Some of the CIAM providers that support identity and access management for AI agents include: 1) Auth0’s Auth for gen AI enables multiple accounts for third-party applications to be linked into a single, unified profile. Users only need to authenticate once to authorize an AI agent to interact with all of the connected applications connected to their accounts.

Read Article

AU10TIX has launched continuous risk monitoring as part of its advanced AML solution. Driven by customer demand, this powerful capability delivers real-time risk insights across the full customer lifecycle—empowering businesses to detect behavioral anomalies and emerging threats as they arise. AU10TIX’s continuous monitoring capability proactively scans top data sources including global sanctions lists, politically exposed person (PEP) databases, and adverse media in real time to detect anomalies as they emerge. The system dynamically adjusts screening intensity based on customer risk profiles and business requirements—supporting KYC and KYB processes while ensuring adherence to evolving global regulations. AU10TIX’s AML solution features a proprietary decision-making mechanism, customizable workflows, and a user-friendly dashboard to streamline risk management and due diligence processes. The new capability provides: Real-time fraud and money laundering alerts; Adaptive risk scoring, continuously recalibrated based on real-time data and changing user behavior; Flexible thresholding tailored to customer risk levels; Coverage across 240+ countries and 1,600 government sites; A unified dashboard for identity verification and AML results; and Seamless KYC + KYB support in a single compliance flow

Read Article

Vouched announced the launch of several initiatives to ensure the coming ecosystem of AI Software Agents is built on a foundation of strong identity and trust. These include Agent Reputation Directory, a groundbreaking solution designed to address the critical gap in identity and trust for autonomous software agents – or, how to tell good agents from bad. As AI agents become increasingly integral to digital workflows, this tool ensures that only verified, trustworthy agents can participate in sensitive operations-protecting organizations and individuals from fraud, impersonation, and unauthorized access. As AI agents increasingly represent individuals and organizations in digital interactions, Vouched’s Know Your Agent introduces a suite of innovations that close critical identity gaps: 1) MCP-I (MCP-Identity): A proposed extension to the MCP protocol, MCP-I adds robust identity capabilities for both agents and humans, enabling secure, identity-aware communication in agent-based ecosystems. 2) Vouched MCP-Identity Server: A turnkey SaaS solution with easy-to-integrate APIs for strong identity verification in agent systems and applications. It includes a developer toolkit for AI agents to securely store verified credentials and delegations. Aligned with the MCP-I specification, the SDK supports scalable, standards-based identity integration for AI-driven workflows. 3) Know That AI (http://knowthat.ai): A transparent Agent Reputation Directory that allows users to verify agent identities and review reputation data, with a core focus on fraud prevention and digital trust. Know That AI is a community-driven system where MCP Servers can report on the behavior of software agents (good or bad) to lead to a community-driven assessment of that agent’s trustworthiness.

Read Article

PlainID, global provider of Identity Security, introduces Policy Management for Agentic AI. Policy Management for Agentic AI enables organizations to define granular policies that control what data AI agents can access, how they process it, and which actions they may take—ensuring that every AI-driven workflow abides by corporate and regulatory mandates. Key capabilities include: Identity-aware control – Enforce access based on human and non-human identity (NHI). Dynamic, fine-grained policies – Apply adaptable controls to every AI Agent interaction with data, APIs and services. Centralized policy management – Manage and govern all policies in one unified, standardized interface. Seamless integration – With popular AI platforms and orchestration frameworks Zero Trust Alignment – Ensure AI operations align with enterprise security and compliance frameworks, by design. Auditability – Gain full visibility into AI decision chains, access attempts, and policy outcomes. “As enterprises accelerate AI initiatives, PlainID empowers teams to govern AI data and decisions without compromising innovation. Through policy management and access enforcement, we ensure every AI interaction is secure, compliant, and policy-aware,” said Gal Helemski, Chief Product Officer and Co-Founder of PlainID.

Read Article

Mastercard and PayPal have partnered to co-develop features using Mastercard’s One Credential, a solution that enables consumers to use a single credential when shopping online or in-store. The companies aim to use this solution to give consumers more choice and control over how they pay at checkout, allowing them to access multiple payment options. One Credential can also help PayPal users improve their creditworthiness and progress from debit to installments and other structured credit. “We both want to reduce friction for consumers and bring them more power over how they pay,” Chris Sweetland, senior vice president of partnerships at PayPal, said. Bunita Sawhney, chief consumer product officer at Mastercard, said that the partnership with PayPal will build on “our collective strength of global payments innovation. With One Credential, we’re delivering the personalized digital experiences that build consumer confidence and trust.”  Mastercard’s One Credential will allow consumers to choose to pay with debit, installments, prepaid or credit. Users can set their preferences online or in an app. They can also set preferences based on transaction type and time. For example, users can specify their checking account for expenses under $100, their credit card for expenses over $100 and installments for occasional larger purchases. Mastercard is now rolling out One Credential as a network-level capability worldwide.

Read Article

Cognitiv announced AI Personas, a first-of-its-kind solution that transforms real-time consumer behavior data into dynamic audience profiles, revealing exactly which content triggers conversions to optimize targeting precision. Unlike traditional static segments, Cognitiv AI Personas evolve continuously with consumer behavior, built from each brand’s unique first-party data, rather than relying on off-the-shelf audience taxonomies used by competitors. While in beta, Cognitiv’s AI Personas has outperformed advertiser CPA goals by 9x, achieved 90% more efficient cost-per-action and outperformed CTR benchmarks by 60%. The offering allows advertisers to gain an unprecedented look “under the hood,” unlocking a holistic understanding of their consumers through the AI powering Cognitiv’s custom algorithms. This helps validate existing strategies while illuminating blind spots across display, social, and other channels. With these insights, advertisers can track the relationship between campaign lift and changes in audience engagement over time to refine creative messaging, audience strategies, and campaign optimization. Advertisers can also use AI Personas to reach audiences through ContextGPT, Cognitiv’s advanced contextual targeting solution. By knowing where high performing audiences are most likely to be online, ContextGPT helps advertisers better understand their target audience and reach them in the appropriate contexts.

Read Article

Marie Austenaa, the head of digital identity at Visa has described the upcoming EU Digital Identity Wallet (eID) is as a “gamechanger” for payments and banking, describing the move as a “present on a silver plate” for the sector, with the eID Wallet acting as a crucial new tool for regulatory compliant account opening. By 2026, each EU member state will need to deliver at least one version of the Wallet. The IDs are expected to be fully operational by 2027, with service providers mandated to accept them during the same year. Austenaa explained that the ID will make it much easier to open a bank account in another country and expand across borders. The head of digital identity said the upcoming ID will be used as an authentication credential in a person’s wallet, where a bank can rely on it rather than their banking app, while it can be presented to a merchant to perform authentication in “a way that everyone can trust.” She described it as an opportunity to separate the identity process from banks. The identification process will be done by another entity, she said, but proof will still be shared with the financial institution. Austenaa added that the eID would provide opportunities in other areas such as verification of IBAN, or proof of income, but she said that this is “going to take time”. “[It is an] opportunity for the banks, having a trusted digital identity that is fully digital with a great user experience, the member states taking responsibility for the identity itself, that’s kind of cool,” she continued, adding that the ID will create economic wealth all around the EU, with further opportunities around driving trust and innovation, and reducing fraud.

Read Article

Permissions management startup AuthZed announced new support for retrieval-augmented generation and agentic artificial intelligence systems, expanding its authorization infrastructure to address security challenges in enterprise AI. The expanded support is designed to give engineering teams the tools they need to ensure that AI systems respect permissions, prevent data leaks and maintain complete audit trails. AuthZed uses its open-source permissions system, SpiceDB, to support RAG and agentic AI. SpiceDB, based on Google’s internal permission system, Zanzibar, was built for scale and complexity and can scale to trillions of access control lists and millions of authorization checks per second. AuthZed says that supporting AI is a natural evolution for the system. AuthZed ensures that only authorized data is retrieved, embedded and displayed to users throughout the RAG process. Using AuthZed, teams can enforce access control by filtering documents before embedding them, post-filtering vector search results to exclude restricted content, and synchronizing permissions in real time with platforms such as Google Workspace and SharePoint. The controls allow organizations to build secure, high-performance RAG systems that minimize the risk of data leaks. On the agentic AI front, AuthZed’s Agentic AI Authorization Model is designed to manage what agents can do by aligning their capabilities with the permissions of the users they act on behalf of.

Read Article

Remote privileged access management company Cyolo Ltd. announced a major update to its Cyolo PRO, or Privileged Remote Operations, platform, introducing new capabilities designed to improve visibility, security and operational agility in industrial and cyber-physical system environments. Leading the list of new features is Third-Party VPN Control, a capability that allows organizations to enforce access policies and gain real-time visibility over vendor-managed virtual private networks and direct connections without requiring changes to existing production infrastructure or vendor workflows. The new version of Cyolo PRO also introduces Instant Collaboration Link, a browser-based, onetime-use secure link that allows session owners to invite external participants, such as vendors, auditors and engineers, into live Remote Desktop Protocol, Secure Shell or Virtual Network Computing sessions. Another new feature, called Secure Remote Assistance, allows organizations to deliver secure technical support for both user-initiated and helpdesk-initiated sessions, all while maintaining operational governance and control. Cyolo Pro also now includes a new Asset Access Hub that presents a unified, contextual view of assets based on both business and technical attributes. 

Read Article