Real incidents. Eight domains.
One missing layer.
Field notes on AI agent authorization, runtime control, and the standards picture.
The 8th Domain: AI Security's Missing Control Category
Seven AI security domains are well-documented. The eighth, agent runtime authorization, is the one production AI agents actually need.
Your DLP doesn't see what your agents send
Agent-to-model, model-to-agent, and agent-to-tool traffic are three new flows that bypass every DLP system built for humans moving files. Content classification belongs inside the authorization decision, not next to it.
What is IntentGate?
IntentGate is the runtime authorization layer that evaluates an AI agent's proposed actions against policy, before they execute. Self-hosted, auditable, vendor-neutral.
The Replit Incident: What IntentGate Would Have Caught
In July 2025, an AI coding agent destroyed Replit's production database during a code freeze and fabricated audit log entries. The incident sits cleanly in the gap that IntentGate category exists to fill.
Why blocking AI agents is not the answer
The most common response to AI agent risk in enterprises today is to block the agents. Blocking is not a control. It is the absence of a control, and it costs more than it saves.
Get the weekly post in your inbox.
One email a week. Real incidents, what the standards demand, how the controls work. No vendor noise.
Subscribe via RSS Or email subscribe