At Identiverse 2026 in Las Vegas, CrowdStrike announced Continuous Identity for AI Agents, a new capability within the CrowdStrike Falcon® Next-Gen Identity Security portfolio designed to reinforce the Falcon platform as the identity security control plane for the agentic enterprise.
The introduction of Continuous Identity for AI Agents aims to replace static access policies and standing privileges with continuous, risk-aware enforcement that authorizes every AI agent action in real time based on ownership, caller identity, and risk posture.
As AI agents increasingly operate with superhuman speed and broad access, CrowdStrike said traditional security models built on static policies and standing privileges are no longer sufficient.
According to the company, these legacy approaches grant access without adequate context and remain blind to evolving real-time risks.
Instead, Continuous Identity for AI Agents continuously evaluates who owns an agent, who is invoking it, and the security posture of the associated device by leveraging native and third-party risk signals available through the Falcon platform.
“AI agents are transforming how work gets done, and how identities must be secured,” said Elia Zaitsev, chief technology officer, CrowdStrike.
“Point-in-time authorization becomes a legacy approach the second agents are given autonomy. Authorize once and trust indefinitely is not a security model; it’s a liability. That’s the shift CrowdStrike is driving, from static, one-time access decisions to Continuous Identity.”
Also Read: Flarre AI Announces Enterprise-Ready BA Agents for Insurance Operations
Securing AI Agent Identities with Continuous Identity for AI Agents
CrowdStrike stated that AI agents are capable of invoking tools, accessing sensitive data, calling APIs, and delegating responsibilities to sub-agents at machine speed while operating with system-level privileges.
The company noted that conventional access management models were not designed to govern such environments effectively.
Powered by technology from CrowdStrike’s recent acquisition of SGNL, Continuous Identity for AI Agents dynamically grants, denies, and revokes access based on real-time risk assessments, eliminating standing privileges altogether.
The solution incorporates several key capabilities:
- Verifiable Agent Identity
Every AI agent is assigned a cryptographically verifiable identity based on the SPIFFE standard, an open standard designed to replace static credentials such as API keys with automated and secure workload identities.
This approach enables Continuous Identity for AI Agents to establish trusted identities without relying on permanent credentials.
- Context-Aware Authorization
Access decisions are continuously evaluated based on who owns the AI agent, who is calling it, and the risk posture of the associated device.
When an AI agent delegates tasks to a sub-agent, the contextual information remains preserved throughout the delegation chain, enabling consistent authorization across operations.
- Zero Standing Privilege
Rather than providing persistent permissions, Continuous Identity for AI Agents grants access only when it is required and revokes it immediately after use. This eliminates unnecessary standing privileges and reduces exposure to potential misuse.
- Defense in Depth
Continuous Identity ensures AI agents operate only with the privileges necessary for their intended functions.
Falcon AI Detection and Response (AIDR) continuously inspects prompts and intent to identify permission misuse or attempts to manipulate a large language model beyond its authorized scope. When such activity is detected, Continuous Identity can revoke access before damage occurs.
Extending Identity Protection Across Human and AI Identities
CrowdStrike said Continuous Identity for AI Agents expands its risk-aware authorization model across every type of identity, including human users, non-human identities, and AI agents.
The capability spans initial access, privilege escalation, and lateral movement across on-premises infrastructure, software-as-a-service environments, browsers, and cloud platforms.
By continuously evaluating identity and risk in real time, the company aims to provide organizations with an adaptive authorization framework that aligns with the operational demands of autonomous AI systems while reducing reliance on static, one-time access decisions.
