Unrestricted decision making via AI is a bad idea. Countless sci-fi films and books have already given humanity the heads up on that scenario. So it’s important that insurers build in controls on data, decisions and pricing during times of emergency or war. Here’s the news from Curity for you;
Curity has launched Access Intelligence, a runtime authorization layer that gives enterprises real-time control over what AI agents can access and do across enterprise APIs.
Access Intelligence is already in production at If Insurance, the Nordic region’s leading property and casualty insurer, processing more than 520 million API requests and 91 million access tokens annually.
AI agents are proliferating inside enterprises faster than security teams can secure them. According to recent industry research, 88% of organizations report AI agent-related security incidents. The root cause is structural: most enterprise security infrastructure was built around authentication – verifying who is requesting access. It was never designed to govern what happens after, at the speed and scale AI agents demand.
Central to Access Intelligence is Token Intelligence, Curity’s runtime authorization approach, which makes every access decision contextual, precise and auditable. Instead of relying on broad, pre-granted permissions, Token Intelligence determines authorization in real time based on the agent’s identity, who it represents, what it is trying to do and how much it should be trusted at that moment.
The agent gets exactly the access it needs, and that access disappears when the task is complete.
Because access is determined at runtime rather than provisioned in advance, the architecture scales cleanly as agent deployments grow, with no permission inventory to maintain and no expanding attack surface.
Jacob Ideskog, Co-founder and CTO at Curity, said: “Authentication is a moment, but authorization is a process. Most identity systems were built for the moment. We built for the process.”
IfGPT, If Insurance’s generative AI assistant, already serves more than 200,000 customers – running on the same secure APIs that power If’s digital platform, now extended by Access Intelligence. The deployment required no dedicated agent infrastructure and no changes to the existing setup.
Access Intelligence extends a platform already trusted by If Insurance, Santander, ICA and PagerDuty, and reflects Curity’s continued investment in enterprise-grade API security following GRO’s strategic backing in 2023.
Curity also recently appointed Monica Enand as Chair of the Board. Enand previously served as Chair of Auth0 through its acquisition by Okta in 2021, bringing deep experience scaling identity and access management companies through high-growth phases.
Be the first to comment