Upgrade to Pro — share decks privately, control downloads, hide ads and more …

ID-JAG: The Enterprise-Ready Standard for AI Ag...

ID-JAG: The Enterprise-Ready Standard for AI Agent Authorization in the MCP & A2A Era

AI agents are no longer just tools that answer questions. Through MCP and A2A, they are evolving into autonomous actors that interact with internal APIs, SaaS platforms, data sources, and business systems on behalf of users and organizations. As this shift occurs, the critical security question is no longer “Which model should we use?” but rather: “Under whose authority is this agent acting, who authorized the action, and how can we audit it?”

In this session, we will explore why traditional access methods—such as API keys, long-lived tokens, service accounts, and basic user consent—often lead to token sprawl, Shadow AI, policy bypasses, and significant audit gaps. We will then introduce ID-JAG, an authorization pattern that extends enterprise IdP SSO trust directly to API access.

Rather than getting bogged down in specification details, this session uses ID-JAG as a practical lens for designing authorization in the AI Agent/A2A era. We will cover how to accurately represent the subject, actor, client, and resource, and how to translate these trust relationships into scoped, auditable access tokens. Finally, a brief id-jag-the-hard-way demo using Keycloak, Athenz, and MCP will demonstrate this architecture in practice.

Participants will leave with a robust mental model for treating AI agent delegation not as an experimental workaround, but as foundational, enterprise-ready security architecture.

More Decks by LINEヤフーTech (LY Corporation Tech)

Other Decks in Technology

Transcript

  1. 1 2026.06.29 LY Corporation Kim, Jeongwoo | ID & Access

    Division Shimaoka, Shuya | ID & Access Division ID-JAG: The Enterprise-Ready Standard for AI Agent Authorization in the MCP & A2A Era
  2. 2 2026.06.29 LY Corporation Kim, Jeongwoo | ID & Access

    Division Shimaoka, Shuya | ID & Access Division ID-JAG: The Enterprise-Ready Standard for AI Agent Authorization in the MCP & A2A Era
  3. Agenda 01 What is AI Security? AI Securityとは? | AI

    보안이란? 02 The AI Era: Realities and Challenges AI時代の現状と課題 | AI 시대의 현상과 문제점 03 ID-JAG: The Solution ID-JAGの登場 | ID-JAG의 등장 04 ID-JAG: The Mechanism ID-JAGのメカニズム | ID-JAG의 동작원리 05 ID-JAG: The Demo ID-JAGのデモ | ID-JAG의 데모 06 ID-JAG: The Benefits ID-JAG導⼊のメリット | ID-JAG도입의 장점 07 The Closing 発表のまとめ | 발표를 마치며 © LY Corporation
  4. Agenda 01 What is AI Security? AI Securityとは? | AI

    보안이란? 02 The AI Era: Realities and Challenges AI時代の現状と課題 | AI 시대의 현상과 문제점 © LY Corporation 03 ID-JAG: The Solution ID-JAGの登場 | ID-JAG의 등장 04 ID-JAG: The Mechanism ID-JAGのメカニ즘 | ID-JAG의 동작원리 05 ID-JAG: The Demo ID-JAGのデモ | ID-JAG의 데모 06 ID-JAG: The Benefits ID-JAG導⼊のメリット | ID-JAG도입의 장점 07 The Closing 発表のまとめ | 발표를 마치며
  5. Agenda 01 What is AI Security? AI Securityとは? | AI

    보안이란? 02 The AI Era: Realities and Challenges AI時代の現状と課題 | AI 시대의 현상과 문제점 © LY Corporation 04 ID-JAG: The Mechanism ID-JAGのメカニ즘 | ID-JAG의 동작원리 05 ID-JAG: The Demo ID-JAGのデモ | ID-JAG의 데모 03 ID-JAG: The Solution ID-JAGの登場 | ID-JAG의 등장 06 ID-JAG: The Benefits ID-JAG導⼊のメリット | ID-JAG도입의 장점 07 The Closing 発表のまとめ | 발표를 마치며
  6. Agenda 01 What is AI Security? AI Securityとは? | AI

    보안이란? 02 The AI Era: Realities and Challenges AI時代の現状と課題 | AI 시대의 현상과 문제점 03 ID-JAG: The Solution ID-JAGの登場 | ID-JAG의 등장 04 ID-JAG: The Mechanism ID-JAGのメカニ즘 | ID-JAG의 동작원리 05 ID-JAG: The Demo ID-JAGのデモ | ID-JAG의 데모 06 ID-JAG: The Benefits ID-JAG導⼊のメリット | ID-JAG도입의 장점 07 The Closing 発表のまとめ | 발표를 마치며 © LY Corporation
  7. Agenda 01 What is AI Security? AI Securityとは? | AI

    보안이란? 02 The AI Era: Realities and Challenges AI時代の現状と課題 | AI 시대의 현상과 문제점 03 ID-JAG: The Solution ID-JAGの登場 | ID-JAG의 등장 04 ID-JAG: The Mechanism ID-JAGのメカニズム | ID-JAG의 동작원리 05 ID-JAG: The Demo ID-JAGのデモ | ID-JAG의 데모 06 ID-JAG: The Benefits ID-JAG導⼊のメリット | ID-JAG도입의 장점 07 The Closing 発表のまとめ | 발표를 마치며 © LY Corporation
  8. Agenda 01 What is AI Security? AI Securityとは? | AI

    보안이란? 02 The AI Era: Realities and Challenges AI時代の現状と課題 | AI 시대의 현상과 문제점 03 ID-JAG: The Solution ID-JAGの登場 | ID-JAG의 등장 04 ID-JAG: The Mechanism ID-JAGのメカニズム | ID-JAG의 동작원리 05 ID-JAG: The Demo ID-JAGのデモ | ID-JAG의 데모 06 ID-JAG: The Benefits ID-JAG導⼊のメリット | ID-JAG도입의 장점 07 The Closing 発表のまとめ | 발표를 마치며 © LY Corporation
  9. Agenda 01 What is AI Security? AI Securityとは? | AI

    보안이란? 02 The AI Era: Realities and Challenges AI時代の現状と課題 | AI 시대의 현상과 문제점 03 ID-JAG: The Solution ID-JAGの登場 | ID-JAG의 등장 04 ID-JAG: The Mechanism ID-JAGのメカニズム | ID-JAG의 동작원리 05 ID-JAG: The Demo ID-JAGのデモ | ID-JAG의 데모 06 ID-JAG: The Benefits ID-JAG導⼊のメリット | ID-JAG도입의 장점 07 The Closing 発表のまとめ | 발표를 마치며 © LY Corporation
  10. Agenda 01 What is AI Security? AI Securityとは? | AI

    보안이란? 02 The AI Era: Realities and Challenges AI時代の現状と課題 | AI 시대의 현상과 문제점 03 ID-JAG: The Solution ID-JAGの登場 | ID-JAG의 등장 04 ID-JAG: The Mechanism ID-JAGのメカニズム | ID-JAG의 동작원리 05 ID-JAG: The Demo ID-JAGのデモ | ID-JAG의 데모 06 ID-JAG: The Benefits ID-JAG導⼊のメリット | ID-JAG도입의 장점 07 The Closing 発表のまとめ | 발표를 마치며 © LY Corporation
  11. Authentication/Authorization Solution 認証・認可ソリューション | 인증/인가 솔류션 https://www.athenz.io Open source platform

    for X.509 certificate based service authentication and fine grained access control in dynamic infrastructures
  12. WOW

  13. 10x Faster スピード10倍 | 스피드 10배 Disrupt and Reinvent 破壊と創造

    | 기존의 틀을 깬 혁신 No. 1 No.1への執念 | 넘버원을 향한 집념 01 02 03 Subtitle With AI
  14.  Agent Control AIの⾏動制御 AI 행동 제어  Development Velocity

    開発スピード 개발 속도 How To Achieve Both? 両⽴は可能か? 동시에 해결하는 방법?
  15. ID-JAG Roadmap & Timeline FIRST RELEASE 2024.03.01 First Individual Draft

    Released 最初のドラフト公開 | 첫 개인 초안 공개 OFFICIAL SUPPORT 2025.06.23 Okta official announcement Okta 公式発表 | Okta 공식 발표 LATEST UPDATE 2026.05.21 Drafting in IETF OAuth WG IETF OAuth WG での進捗 | IETF OAuth WG 논의 중
  16. ID-JAG Roadmap & Timeline LATEST UPDATE 2026.05.21 Drafting in IETF

    OAuth WG IETF OAuth WG での進捗 | IETF OAuth WG 논의 중 FIRST RELEASE 2024.03.01 First Individual Draft Released 最初のドラフト公開 | 첫 개인 초안 공개 OFFICIAL SUPPORT 2025.06.23 Okta official announcement Okta 公式発表 | Okta 공식 발표
  17. ID-JAG Roadmap & Timeline LATEST UPDATE 2026.05.21 Drafting in IETF

    OAuth WG IETF OAuth WG での進捗 | IETF OAuth WG 논의 중 FIRST RELEASE 2024.03.01 First Individual Draft Released 最初のドラフト公開 | 첫 개인 초안 공개 OFFICIAL SUPPORT 2025.06.23 Okta official announcement Okta 公式発表 | Okta 공식 발표
  18. [ID-JAG] can be used to extend the SSO relationship of

    multiple SaaS applications to include API access between these applications as well. This specification enables federation for Authorization Servers across policy or administrative boundaries. The same enterprise IdP that is trusted by applications for SSO can be extended to broker access to APIs. This enables the enterprise to centralize more access decisions across their SaaS ecosystem and provides better end-user experience for users that need to connect multiple applications via OAuth 2.0. ̶ Appendix A.1. Enterprise Deployment - draft-ietf-oauth-identity-assertion-authz-grant-05 https://datatracker.ietf.org/doc/draft-ietf-oauth-identity-assertion-authz-grant/
  19. RFC 8693 OAuth 2.0 Token Exchange RFC 7523 JWT Profile

    for OAuth 2.0 Authorization Grants
  20. IdP

  21. ID-JAG • Who: the AI Agent • Whom: The Human

    User • What: Actions on behalf
  22. Zero New Infrastructure 既存インフラの活⽤ | 기존 인프라 활용 Centralized Policy

    セキュリティポリシーの⼀元管理 | 보안 정책 일원화 01 02 Benefits for Enterprises 組織の視点 | 기업의 시점
  23. Zero New Infrastructure 既存インフラの活⽤ | 기존 인프라 활용 Centralized Policy

    セキュリティポリシーの⼀元管理 | 보안 정책 일원화 01 02 Benefits for Enterprises 組織の視点 | 기업의 시점
  24. Zero New Infrastructure 既存インフラの活⽤ | 기존 인프라 활용 Centralized Policy

    セキュリティポリシーの⼀元管理 | 보안 정책 일원화 Full Visibility 可視性の確保 | 가시성 확보 01 02 03 Benefits for Enterprises 組織の視点 | 기업의 시점
  25. ゼロからローカルに構築する ID-JAG | 실패를 통해 배우는 ID-JAG 로컬 구축 핸즈온

    ID-JAG The Hard Way https://github.com/athenz-community/id-jag-the-hard-way
  26. 01 Whoʼs Responsible For ? 誰の責任で | 누구의 책임으로 02

    What Permissions ? どの権限を | 어떠한 권한을
  27. 01 Whoʼs Responsible For ? 誰の責任で | 누구의 책임으로 02

    What Permissions ? どの権限を | 어떠한 권한을 03 To What Extent to Delegate ? どこまで任せたか | 얼마나 이양하는가