We summarized important takeaways from NIST's SP 800-207A: A #zerotrust Architecture Model for #accesscontrol in #cloudnative Applications in Multi-Cloud Environments. It's great at East-West traffic, but needed some comments on North-South traffic.

Kubernetes Health Checks are Hard

The Pomerium team will be going live tomorrow together for the very first time at 12:30PM ET!. Join CEO @bdd_io , Senior Software Engineer Alexandre Lamarrre, and Developer Advocate @nickytonline's candid conversation on Kubernetes health checks.

Catch the live now!.

Twilio Voice Al & LangChain

Twilio Voice Al & LangChain. @rishabincloud, Staff Developer Evangelist at Twilio, joins @nickytonline to discuss Twilio Voice Al & LangChain. Join us tomorrow, August 27th at 12:15PM ET:.

AI Profits for All. Lucas Wall joins @nickytonline to discus the status of open source generative AI, marketplaces, and AlmmaGPT as a multi-LLM platform. Join us on September 8th at 9:30am ET:.

Static API keys and IAM roles don’t cut it for LLMs. Prompt-driven apps need continuous, identity-aware policy at every request. Explore why traditional access controls fail in LLM deployments and how identity-aware policy at the edge keeps access safe:.

RT @nickytonline: Code and Chill: Messing around with @LibreChatAI and @pomerium_io . Pick your poison: .- - https:….

Last chance to join this webinar on autonomous AI agents!. Sign up for the webinar and the recording using the link below.

Congratulations to @nickytonline for giving a successful talk on Agentic Access at Black Hat USA!. Missed the talk? You can come talk to Nick at Booth #6216, right next to Startup City Theater. #BlackHat #BlackHatUSA #cybersecurity #agenticai #mcp

Attending Black Hat USA?. Pick up free swag, enter our raffle, watch a demo, and talk to the Pomerium team at Booth #6216. We're located right next to Startup City Theater. #cybersecurity #blackhatusa #blackhat #agenticAI #mcp

No AuthZ. No identity checks. No context-aware policy. The MCP spec is missing core security features, meaning teams deploying MCP-compatible tools are exposing internal APIs without realizing it. It's time to lock down agentic access. Read more:.

Shadow AI Is Already in Your Organization. Employees are pasting sensitive code, customer data, and roadmaps into public LLMs—without approval, visibility, or guardrails. Blocking ChatGPT at the firewall? That won’t cut it. Read more on ShadowAI:.

We’re heading to Vegas for Black Hat!.📍Stop by Booth #6216 for live demos, free swag, and more. 🎤 Catch @nickytonline's talk, “Agentic Access: OAuth Gets You In, Zero Trust Keeps You Safe”.🗓️ August 6 at 10:45 AM | Startup City Theater. We're so excited to meet you!

RT @nickytonline: And we're live! Come hang with Den and me as we chat about MCP Security and Authorization.

MCP Security & Authorization

With v0.30, Pomerium supports native SSH access. No agents, tunnels, or special clients required!. Your SSH connections are:.🔐 Zero Trust-aligned.🔑 OAuth-backed and centrally authorized.🔍 Ephemeral & auditable.📈 Easy to manage at scale. Full Changelog:.

RT @alex_yehya: The energy from the South Bay hasn't faded, and we're already prepping an even more exciting event in San Francisco!. On Ju….

Next Thursday in SF, @nickytonline will be speaking about how AI agents need Zero Trust policies that go beyond OAuth's 'what can you do' to answer 'should you be doing this right now' with context-aware, fine-grained control. Apply to attend:.