redwoodresearch.substack.com/p/comparing-risk-from-internally-deployed/comment/128678625

Preview meta tags from the redwoodresearch.substack.com website.

Linked Hostnames

2

Thumbnail

Search Engine Appearance

Google

https://redwoodresearch.substack.com/p/comparing-risk-from-internally-deployed/comment/128678625

Varun Godbole on Redwood Research blog

I wonder if we're just very early in all this. I suspect that you're right that AI agents operating within a company's internal systems will likely need lots of wide-ranged access to be considered useful. At the same time, I don't think that existing infra for managing ACLs has really kept up with the idea of "AI agents". For example, a lot of REST APIs using OAuth2 used by agents work by impersonating the user. But I suspect that many APIs will soon need to allow users to manage robotic accounts. There's also an ouroborous pattern here, where it seems inevitable that folks will use LLMs to decipher and act on a gradually increasing array of permissions...



Bing

Varun Godbole on Redwood Research blog

https://redwoodresearch.substack.com/p/comparing-risk-from-internally-deployed/comment/128678625

I wonder if we're just very early in all this. I suspect that you're right that AI agents operating within a company's internal systems will likely need lots of wide-ranged access to be considered useful. At the same time, I don't think that existing infra for managing ACLs has really kept up with the idea of "AI agents". For example, a lot of REST APIs using OAuth2 used by agents work by impersonating the user. But I suspect that many APIs will soon need to allow users to manage robotic accounts. There's also an ouroborous pattern here, where it seems inevitable that folks will use LLMs to decipher and act on a gradually increasing array of permissions...



DuckDuckGo

https://redwoodresearch.substack.com/p/comparing-risk-from-internally-deployed/comment/128678625

Varun Godbole on Redwood Research blog

I wonder if we're just very early in all this. I suspect that you're right that AI agents operating within a company's internal systems will likely need lots of wide-ranged access to be considered useful. At the same time, I don't think that existing infra for managing ACLs has really kept up with the idea of "AI agents". For example, a lot of REST APIs using OAuth2 used by agents work by impersonating the user. But I suspect that many APIs will soon need to allow users to manage robotic accounts. There's also an ouroborous pattern here, where it seems inevitable that folks will use LLMs to decipher and act on a gradually increasing array of permissions...

  • General Meta Tags

    16
    • title
      Comments - Comparing risk from internally-deployed AI to insider and outsider threats from humans
    • title
    • title
    • title
    • title
  • Open Graph Meta Tags

    7
    • og:url
      https://redwoodresearch.substack.com/p/comparing-risk-from-internally-deployed/comment/128678625
    • og:image
      https://substackcdn.com/image/fetch/$s_!0h0E!,f_auto,q_auto:best,fl_progressive:steep/https%3A%2F%2Fredwoodresearch.substack.com%2Ftwitter%2Fsubscribe-card.jpg%3Fv%3D1467347670%26version%3D9
    • og:type
      article
    • og:title
      Varun Godbole on Redwood Research blog
    • og:description
      I wonder if we're just very early in all this. I suspect that you're right that AI agents operating within a company's internal systems will likely need lots of wide-ranged access to be considered useful. At the same time, I don't think that existing infra for managing ACLs has really kept up with the idea of "AI agents". For example, a lot of REST APIs using OAuth2 used by agents work by impersonating the user. But I suspect that many APIs will soon need to allow users to manage robotic accounts. There's also an ouroborous pattern here, where it seems inevitable that folks will use LLMs to decipher and act on a gradually increasing array of permissions...
  • Twitter Meta Tags

    8
    • twitter:image
      https://substackcdn.com/image/fetch/$s_!0h0E!,f_auto,q_auto:best,fl_progressive:steep/https%3A%2F%2Fredwoodresearch.substack.com%2Ftwitter%2Fsubscribe-card.jpg%3Fv%3D1467347670%26version%3D9
    • twitter:card
      summary_large_image
    • twitter:label1
      Likes
    • twitter:data1
      1
    • twitter:label2
      Replies
  • Link Tags

    33
    • alternate
      /feed
    • apple-touch-icon
      https://substackcdn.com/image/fetch/$s_!dXu3!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0d382275-365e-4d62-bf76-f59fd0592028%2Fapple-touch-icon-57x57.png
    • apple-touch-icon
      https://substackcdn.com/image/fetch/$s_!yqWx!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0d382275-365e-4d62-bf76-f59fd0592028%2Fapple-touch-icon-60x60.png
    • apple-touch-icon
      https://substackcdn.com/image/fetch/$s_!hPZ0!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0d382275-365e-4d62-bf76-f59fd0592028%2Fapple-touch-icon-72x72.png
    • apple-touch-icon
      https://substackcdn.com/image/fetch/$s_!U-0e!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F0d382275-365e-4d62-bf76-f59fd0592028%2Fapple-touch-icon-76x76.png

Links

13