Howardism · Vol. 03Plate II · No. 02
Access Control, tagged.
Notes2TagAccess ControlOldest28 May 2026Newest30 May 2026
Every article tagged access control, newest first.
| Title | Summary | Date |
|---|---|---|
| Foundation → Enterprise → Advanced: Is the Agent Access-Control Jump a Cliff? | No cliff — Enterprise (ABAC + dynamic privilege elevation with return-to-baseline + mTLS + sandboxing) is the pragmatic midpoint between Foundation static roles and Advanced JIT/JEA; migration runs identity-first, then least-agency, then blast-radius | |
| Least Agency | OWASP term extending least privilege to agents: constrain not just what an agent can access but what each tool can do, how often, and where; deny-by-default, per-agent credentials, scope limits |