Category: Uncategorized

The AI Agent Authority Gap – From Ungoverned to Delegation

As discussed in our previous article, AI agents are exposing a structural gap in enterprise security, but the problem is often framed too narrowly.

The issue is not simply that agents are new actors. It is that agents are delegated actors. They do not emerge with independent authority. They are triggered, invoked, provisioned, or empowered by existing enterprise identities: human users, machine identities, bots, service accounts, and other non-human actors.

That makes Agent-AI fundamentally different from both people and software, while still being inseparable from both.

This is why the AI Agent Authority Gap is really a delegation gap. Enterprises are trying to govern an emerging actor without first governing the identities that delegate authority to it.

Traditional IAM was built to answer a narrower question: who has access. But once AI agents are introduced, the real question becomes: what authority is being delegated, by whom, under what conditions, for what purpose, and across what scope? 

First Things First: Governing the Delegation Chain Before Agent AI 

The crucial point is sequencing. An enterprise cannot safely govern Agent-AI unless it first governs, as much as possible, the traditional actors that serve as its delegation source.

Human identities and traditional machine identities are already fragmented across applications, APIs, embedded credentials, unmanaged service accounts, and application-specific identity logic. This is the identity dark matter Orchid describes: authority that exists, operates, and often accumulates risk outside the view of managed IAM. If that dark matter remains unobserved, then the agent inherits an already broken authority model. The result is predictable: the agent becomes an efficient amplifier of hidden access, hidden permissions, and hidden execution paths.

So the bridge to safe Agent-AI adoption is not to start with the agent in isolation. It is first to reduce identity dark matter across the traditional actor estate, so it won’t be delegated or abused for the sake of efficiency. That means illuminating all human and traditional machine identities across the application environment, understanding how they authenticate, where credentials are embedded, how workflows actually execute, and where unmanaged authority sits. Orchid’s continuous observability model is the essential foundation for safe Agent AI implementation because it establishes a verified baseline of real identity behavior across managed and unmanaged environments, rather than relying on incomplete static policy assumptions.

From Observability to Authority: Dynamic Governance for Agent AI

Once that traditional actor layer is observed, analyzed, and optimized, that output becomes the input for a real-time Agent-AI Delegation Authority layer.This is where Orchid’s model becomes more powerful than conventional IAM. Its telemetry is not just visibility or insight. It becomes a continuous feed into an authority engine that evaluates the authority profile of the delegator, the context of the target application, the intent behind the requested action, and the effective scope of execution. In other words, the agent should not be governed only by its own nominal permissions. It should be governed continuously by the posture and intent of the actor delegating authority to it, plus the context of what the agent is trying to do.

That creates a much stronger model for control. Think about it. A human delegator with weak posture, risky behavior, or excessive hidden access should not yield the same Agent-AI authority as a tightly governed delegator operating in a constrained workflow. Likewise, a machine or service account with broad but poorly understood access should not be allowed to trigger an agent with unconstrained downstream actionability.

Orchid’s role in this model is to continuously assess the delegator, the delegated actor, and the application path between them, then enforce authority accordingly. That is what turns observability into governance.

This is also why the destination state is not just better individual auditing of human, machine, and agent AI actors. It is dynamic sequential delegation control. Orchid can map each agent identity to the applications it touches, the workflows it can invoke, the intent patterns it exhibits, and the scope of its intended actions. It can then use the live observability feed to determine, in real time, whether that agent should be allowed to act, allowed only to recommend, constrained to a limited tool set, or stopped entirely. That is the ultimate meaning of closing the authority gap: not just knowing what an agent can access, but continuously determining what it is allowed to decide and execute at machine speed.

Closing Reminders

AI agents are not just a new identity type. They are a delegated identity type. Their authority originates from traditional enterprise actors: humans, bots, service accounts, and machine identities. That means the problem of Agent-AI governance does not begin with the agent. It begins with the delegation source. If enterprises cannot observe and govern the human and traditional machine identities that trigger agent actions, then they cannot safely govern the agent either. Orchid’s model makes that sequencing explicit: first reduce identity dark matter across the traditional actor estate, then use continuous observability, analysis, and audit of those delegators as the live input into a real-time Agent-AI Delegation Authority layer. In that model, the agent is governed not only by its nominal permissions but by the posture, intent, context, and scope of the actor delegating authority to it. That is the missing bridge between traditional IAM and safe Agent-AI adoption.

An Egyptian family of six believed to be the longest held at the controversial South Texas Family Residential Center in Dilley, the nation’s only federal immigrant facility authorized to imprison parents with their children, were redetained Saturday after federal judges this week ordered their release. They are being sent to Egypt on a private plane, according to one of the family’s lawyers.

“Stop this travesty of justice from taking place,” the attorney, Eric Lee, posted on X.

Two federal judges ruled this week that the family, which includes 5-year-old twins and has been held at Dilley for more than 10 months, should be freed while they await an immigration judge’s decision on their asylum case.

The family received widespread attention after the mother and her children earlier this year began publicly raising alarms about the treatment at the facility, including medical neglect, rotting food, impotable water, and disrespect for their Muslim faith. Last week, lawyers said that the mother was rushed to the emergency room after months of suffering from an unidentified bump, which she feared may be cancerous due to her family history and possibly heightened by the lack of medical care at the detention center.

In an emergency request to the U.S. Court of Appeals for the Fifth Circuit on Saturday, the family’s attorneys argued that halting their immediate deportation is necessary in part because of the “highly irregular actions that the government has taken” against the family since they were detained last year. The attorneys said that the family was re-arrested by Immigration and Customs Enforcement officials at their first check-in since being freed Thursday.

Spokespeople for ICE and the Department of Homeland Security did not immediately respond to questions Saturday. But in a statement earlier this week that followed their release, DHS spokesperson Lauren Bis wrote that her agency “will continue to fight for the removal of those who have no right to be in our country, especially national security threats.” She argued that the family had received “full due process,” an account that has been disputed by their attorneys and a Houston Chronicle report this month citing previous judicial decisions.

The El Gamal family, who came to the U.S. on a tourist visa in 2022 and later applied for asylum, has been detained since June after the father, Mohamed Sabry Soliman, was charged with attacking mostly Jewish protesters in Boulder, Colorado, accused of throwing Molotov cocktails at demonstrators supporting Israeli hostages. He allegedly wounded at least 29 people and an 82-year-old woman died from her injuries. The father, who pleaded not guilty, remains in federal custody on more than 100 charges related to the incident.

President Donald Trump’s administration, shortly after the family was arrested last June, publicized their case, promising “Six One-Way Tickets for Mohamed’s Wife and Five Kids. Final Boarding Call Coming Soon.”

His wife, who met her husband in an arranged marriage when she was young, and her children have not been charged with any crimes. They have repeatedly maintained that they did not know about Soliman’s plans and had an estranged relationship with him. The family has since disavowed the father and is no longer in contact with him, their attorney said, and his wife has filed for divorce.

The family’s case went viral last month after its lawyers shared heartbreaking accounts in the children’s own words and drawings of the harm they said they were suffering at Dilley.

“We have been here for nine months. I really miss playing with my toys and my watch,” wrote the 9-year-old in accounts first shared with The Texas Tribune. “Please get us out of here.”

“Imagine being punished for something that you didn’t do, something you would never support, and then being trapped in detention for months,” wrote 18-year-old Habiba El Gamal, the family’s eldest daughter. “Despite having overwhelming evidence to prove our innocence, the truth is ignored.”

The Texas Tribune is a nonprofit, nonpartisan media organization that informs Texans — and engages with them — about public policy, politics, government and statewide issues.

Ravie LakshmananApr 24, 2026Espionage / National Security,

The Office of Inspector General (OIG) of the U.S. National Aeronautics and Space Administration (NASA) has revealed how a Chinese national posed as a U.S. researcher as part of a spear-phishing campaign to obtain sensitive information from the space agency, as well as from government entities, universities, and private companies, in violation of export control laws.

“For years, NASA employees and research collaborators thought they were simply sharing software with colleagues,” the OIG said in a Thursday release. “Instead, they were emailing sensitive defense technology to a Chinese national who was impersonating U.S. engineers.”

The individual linked to the campaign was outed as Chinese national Song Wu in September 2024, when the U.S. Department of Justice (DoJ) announced charges against him for orchestrating a multi-year phishing scheme that stretched from January 2017 to December 2021 and involved targeting dozens of U.S. professors, researchers, and engineers.

Some of the victims of the campaign were employed at NASA, the Air Force, the Navy, the Army, and the Federal Aviation Administration, while the others worked at major universities and private sector firms.

According to the 2024 indictment, Song was an engineer at the Aviation Industry Corporation of China (AVIC), a Chinese state-owned aerospace and defense conglomerate founded in 2008. In an attempt to obtain modeling software used for aerospace design and weapons development, Song and his co-conspirators are alleged to have conducted extensive research on their targets by masquerading as friends and colleagues to gain access to proprietary software and source code.

The OIG said the scheme was successful in a handful of cases where victims shared the sensitive information with the imposter accounts managed by Song et al without realizing they were violating U.S. export control laws.

Song has been indicted on counts of wire fraud and 14 counts of aggravated identity theft, and faces a maximum sentence of 20 years in prison for each count of wire fraud. He also faces a two-year consecutive sentence if convicted of aggravated identity theft. The 40-year-old remains at large.

Adding Song to the U.S. Most Wanted List, the U.S. Federal Bureau of Investigation (FBI) said the specialized software could be used for industrial and military applications, including the development of advanced tactical missiles and aerodynamic design and assessment of weapons.

“As phishing campaigns continue to become more sophisticated, there are common clues that can betray scammers and expose their export fraud schemes,” the OIG said. “In Song’s case, he made multiple requests for the same software and did not justify why he needed it.”

“Export control scammers also often suggest unusual payment methods (such as suspicious wire transfers); abruptly change the terms or source of payment; and use unconventional transfer methods to mask their identity and evade shipping restrictions.”