🛡 Authentication and Authorization in the Age of AI
FusionAuth proposes separating probabilistic model inference from strictly deterministic identification. To protect RAG systems and agents, considerations include metadata filtering, using the Model Context Protocol (MCP) with OAuth 2.1, and implementing a Chain of Identity via Token Exchange (RFC 8693).
🌍 The transition to autonomous agents requires new patterns, such as Fine-Grained Authorization (FGA) and passing user context through JWT tokens, to prevent models from having uncontrolled access to data.
👤 AI security is not a "black box," but rather the application of proven standards (OAuth, JWT) to new scenarios, allowing for the construction of reliable systems with agents and RAG.
Source 1: https://fusionauth.io/articles/ai/ai-authentication-authorization
