Yubico and Delinea have announced a powerful new integration designed to address one of the most pressing challenges in agentic AI security—the accountability gap. As AI agents increasingly take on autonomous roles within enterprise environments, organizations are struggling not only to identify these systems but also to verify whether a real human authorized their actions. This collaboration directly tackles that issue by combining hardware-based authentication with runtime authorization controls.

Specifically, the integration enables Yubico’s Role Delegation Tokens (RDT), which are cryptographic authorization tools backed by YubiKey hardware, to operate seamlessly within the Delinea Platform. In addition, the solution incorporates StrongDM’s runtime authorization capabilities and StrongDM ID, a dedicated identity layer built for AI agents. As a result, organizations can now establish a verifiable and secure link between human decision-makers and AI-driven actions.

Following Delinea’s acquisition of StrongDM, the company has unified Privileged Access Management with just-in-time (JIT) authorization across both human and non-human identities. By integrating Yubico’s RDT, the platform introduces a hardware-based root of trust. Consequently, businesses can ensure that every high-risk action performed by an AI agent is backed by verified human approval.

“The hard problem in agentic AI security is accountability: can you prove a specific human approved a high-consequence action?” said Albert Biketi, chief product and technology officer at Yubico. “Hardware attestation without runtime enforcement is a signature with no enforcement point. Runtime enforcement without hardware attestation is a policy gate with no proof of human presence. This integration with Delinea solves both sides.”

As AI agents continue to evolve, they now actively generate code, manage infrastructure, and interact with enterprise systems. Therefore, they represent one of the fastest-growing categories of non-human identities. However, traditional security models were never designed to manage such autonomous systems. While identity platforms can authenticate AI agents and enforce policies, they often fall short in proving human involvement. On the other hand, hardware tokens confirm human presence but lack the ability to enforce access policies at scale.

Ad Banner

This integration bridges that gap by combining both approaches. Delinea delivers centralized governance, identity management, and runtime authorization, while Yubico ensures hardware-backed human verification. When an AI-driven workflow reaches a critical decision point—such as deploying code or accessing sensitive data—the system requires a human to approve the action using a YubiKey-signed RDT. Only then can the process proceed.

Moreover, this solution introduces several key capabilities, including end-to-end accountability across AI workflows, hardware-verified human authorization, unified identity governance, and detailed audit trails. These features ensure that every automated action can be traced back to a responsible human authority.

“AI agents are quickly becoming one of the fastest-growing classes of identities in enterprise environments, yet most organizations lack the controls and accountability needed to govern what those identities can do,” said Phil Calvin, chief product officer at Delinea. “By combining Delinea’s identity governance and runtime authorization with Yubico’s hardware-backed human authorization, we create a trusted chain of control that ensures every high-risk action performed by an AI agent can be traced back to a verified human decision.”

Ultimately, this partnership sets a new standard for securing AI-driven operations, ensuring that innovation does not come at the cost of accountability and trust.

Recommended Cyber Technology News:

To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com



🔒 Login or Register to continue reading