KuppingerCole Analysts

Hosted by KuppingerCole Analysts

Technology

Website RSS feed

Episodes

401

Latest episode

Jun 2026

Language

About the show

KuppingerCole Analysts AG is an international, independent analyst organization offering technology research, neutral advice and events in Identity Management, Cybersecurity and Artificial Intelligence.

Listen to episodes

60 recent

June 15, 202629 min

Analyst Chat #303: B2B Identity & Access Management - A New Market Unpacked

Business relationships are complex and traditional IAM wasn't built for them. In this episode, Matthias Reinwarth sits down with Principal analyst John Tolbert, author of KuppingerCole Analysts' first-ever B2B IAM Leadership Compass, to explore why Business-to-Business Identity and Access Management is emerging as its own distinct market and what it takes to get it right. Key Topics:✅ Why B2B IAM sits between workforce IAM and CIAM — and why neither alone is sufficient✅ Delegated administration: handing identity governance to partner and supplier organizations✅ Federation, lifecycle management, and the risks of trusting external HR processes✅ "Know Your Business" — vetting organizations, sanctions screening, and org-level trust✅ Fine-grained authorization: why RBAC falls short and ABAC/RBAC are taking over✅ Agentic AI in B2B IAM: agents acting on behalf of external organizations Supply chains with thousands of partner organizations, freelancers with hour-long access windows, and AI agents acting on behalf of external companies B2B IAM has to handle all of it. KuppingerCole Analysts' first B2B IAM Leadership Compass is out now read it alongside this episode to get the full picture of an emerging market you can't afford to ignore.

June 12, 202616 min

Is Your CDN Secure? CDN vs. DDoS Mitigation Unpacked with Qrator Labs

Speed and security are no longer separate concerns. In this videocast, Osman Celik sits down with Andrey Leskin, CTO of Qrator Labs, to break down what Content Delivery Networks really are in 2026 and why they've become a critical piece of modern security infrastructure, not just a performance tool. Key Topics: ✅ What CDNs are and why they're no longer optional for competitive organizations✅ How CDN and DDoS mitigation differ — and where they overlap✅ Cache busting, HTTP floods, Slowloris and other real-world attack vectors✅ Why "security-first CDN" is fundamentally different from "CDN with security bolted on"✅ What CISOs and infrastructure leaders should look for when evaluating CDN solutions✅ How to measure CDN value from day one: round trip time and time to render A CDN without security is just a bigger target — find out why building security in from the ground up changes everything.

June 8, 202635 min

Analyst Chat #302: PAM Is No Longer a Vault - The New Identity Security Layer

Privileged Access Management has outgrown the vault. In this episode, Matthias sits down with lead analyst Alejandro Leal, author of KuppingerCole's newly released PAM Leadership Compass, to explore how the definition of privilege itself has changed, what NHIs and agentic AI mean for PAM, and why deployment sovereignty is now a boardroom conversation. Key Topics: ✅ How the definition of "privilege" has shifted from admin accounts to dynamic runtime identity capabilities✅ PAM convergence with IGA, CIEM, ITDR, SIEM, and SOAR — the end of the standalone PAM product✅ Non-Human Identities (NHIs) and agentic AI: the silent accumulation of machine privilege✅ Just-in-time access: the gap between concept and operational reality✅ Deployment sovereignty: who controls the keys to the kingdom — SaaS, on-prem, or hybrid?✅ AI and ML in PAM: separating genuine innovation from marketing inflation "Most enterprises can tell you the number of employees they have — very few can tell you the number of machine identities." If that sounds familiar, this episode is for you.

June 1, 202627 min

Analyst Chat #301: Know Your Attack Surface - ASM, DRP & Brand Protection

Not all cyber threats target your systems, some target your reputation, your customers, and your brand. In this episode, Matthias Reinwarth sits down with research analyst Osman Celik to unpack three closely related but distinct markets: Attack Surface Management (ASM), Digital Risk Protection (DRP), and Brand Protection — and help organizations figure out which one they actually need. Key Topics: ✅ What Attack Surface Management is and its four subcategories (CAASM, EASM, TPRM, DRP)✅ How Digital Risk Protection monitors dark web, social media, and hacker forums✅ What Brand Protection adds on top of DRP — from takedown services to counterfeit detection✅ DRP vs. Brand Protection: lightweight vs. full-spectrum — and when you need which✅ Why brand reach matters more than company size when assessing risk✅ What KuppingerCole research is available now — and what's coming in August Someone may be selling counterfeit versions of your product right now — or impersonating your brand online. DRP and Brand Protection tools exist to catch exactly that. Check out KuppingerCole's Brand Protection Buyer's Compass here.

May 26, 202614 min

Analyst Chat #300: Shadow Agents and the Next Identity Crisis

Shadow IT was manageable. Shadow AI was concerning. Shadow agents? That's a whole different problem. 300 episodes already? Time flies when you're having fun! In this 300th Episode of the KuppingerCole Analyst Chat, Matthias sits down with Distinguished Analyst Martin Kuppinger to unpack one of the most urgent, and underestimated, security challenges facing organizations right now: employees building and deploying their own AI agents, with no governance, no oversight, and no accountability. Key topics: ✅ What "shadow agents" are and why they're fundamentally different from shadow IT or shadow AI✅ Why vibe coding means anyone, not just developers, can now deploy autonomous agents inside your systems✅ How AI agents massively expand the attack surface through prompt injection, data exfiltration, and uncontrolled access✅ Why discovery and resource-side controls must happen in parallel and why neither alone is enough✅ What organizations can actually do to gain control without just shutting everything down The bottom line: there's a thin line between agents that help your business and agents that harm it. Right now, most organizations can't tell the difference.

May 11, 202656 min

Analyst Chat #299: AI Security Fabric - Identity, Governance & Authorization for Autonomous Agents

AI is reshaping enterprise architectures, but is security keeping pace? In this episode, Martin Kuppinger, Matthias Reinwarth, and Darran Rolls talk about the urgent question of how organizations should structure their defenses for a world of autonomous, agentic AI. The answer: an AI Security Fabric. Key Topics: ✅ Why agentic AI breaks traditional, deterministic access models✅ The concept of "AIdentity" — what makes AI agent identity fundamentally different✅ Can the Identity Fabric scale to meet AI security demands?✅ Discovery, authorization, and governance as the pillars of an AI Security Fabric✅ The geopolitical divide: US "move fast" vs. EU "govern first"✅ Token delegation as the hardest unsolved problem in AI security today "We didn't build IAM for a world where the actor, the path, and the destination are all unknown until the moment of access" so what do we build instead? Find out in this episode. 🎙️ Catch Martin, Matthias, and Darran at the European Identity & Cloud Conference (EIC) in Berlin this May and get a head start on the conversation right here.

May 4, 202632 min

Analyst Chat #298: Why AI Is Becoming Foundational to Cybersecurity

Security teams have spent decades building deterministic, rule-based defenses. But the threat landscape has changed and AI is no longer just a feature add-on. In this episode of Analyst Chat, Matthias sits down with Matthew Gardiner to unpack his latest advisory note and Leadership Compass on AI SOC, exploring why probabilistic AI is becoming a core pillar of modern cybersecurity. Key topics: ✅ Why deterministic security has run its course — and what comes next✅ The "two-sided coin" model: rules-based vs. probabilistic AI approaches✅ Where AI genuinely outperforms traditional methods (and where it doesn't)✅ Risks, hallucinations, and how to build trust in AI-driven security systems✅ The AI SOC in practice: triage, agents, and phased adoption✅ Market outlook: pricing shifts, platform vs. startup dynamics, and data sovereignty AI isn't replacing the security rulebook — it's completing the other half of it. Catch Matthew Gardiner live at EIC Berlin in May, and explore his advisory note and AI SOC Leadership Compass.

April 28, 202620 min

Analyst Chat #297: AIdentity and the Limits of IAM

AI agents don't just use identities. they create, delegate, and impersonate them. In this episode of Analyst Chat, Matthias Reinwarth sits down with KuppingerCole's founder Martin Kuppinger to dig into AIdentity (the concept at the intersection of AI and identity management) and why the IAM tools we've relied on for decades are no longer enough. Key topics: ✅ What AIdentity means and why it's more urgent than ever✅ Why AI agents can't be treated like standard non-human identities✅ The identity relationship challenge — from simple access to complex agent meshes✅ Why "human in the loop" is mostly a misconception✅ The role of verifiable credentials and decentralised identity in securing agents✅ Where security and identity leaders should start today 💡 Traditional IAM was built for humans. Agentic AI plays by entirely different rules.

April 20, 202638 min

Analyst Chat #296: Aldentity - Treating Al Agents as First-Class Identities

AI agents aren't just software, they're a new class of actor that can impersonate users, bypass security policies, and operate across complex identity meshes. In this episode of Analyst Chat, Matthias Reinwarth sits down with Martin Kuppinger and KuppingerCole's newly appointed AI Security Practice Lead Jonathan Care to unpack the emerging concept of AIdentity and why it's the key to securing agentic AI. Key topics: ✅ What "AI Identity" means and why it's more than just a service account✅ The dangers of agent impersonation and the "ClaudeBot dumpster fire"✅ Authorization collapse, what happens when agents bypass security policies✅ The limits of "human in the loop" as a security strategy✅ Two new market categories: AVOP and ATDR✅ Immediate actions CISOs and architects can take today AI is already in your organization, the question is whether you can see it. Stay tuned for upcoming KuppingerCole research on AVOP and ATDR, and catch Martin, Jonathan, and Matthias live at EIC Berlin in May.

April 14, 202615 min

Analyst Chat #295: Independent ROI - A New Model for Cybersecurity Investment

What does an enterprise technology product actually deliver — in hard numbers? In this episode, Matthias Reinwarth sits down with Jonathan Care, KuppingerCole Analysts' newly appointed AI Practice Lead, for a behind-the-scenes look at a brand new research format: the Product Value Navigator (PVN). Key Topics: ✅ Why enterprise tech buying is broken — and what's missing from analyst rankings✅ What the Product Value Navigator is and how it works✅ How KuppingerCole independently validates ROI through real customer interviews and financial modeling✅ Who the PVN is built for: CISOs, IT leaders, procurement teams, and vendors✅ The first published PVN: ManageEngine PAM360 — 219% independently validated ROI✅ What's next on the PVN roadmap: flexible modeling tools and competitive analysis In a world flooded with vendor-funded research and AI-generated content, truly independent economic validation has never been more valuable, or more necessary.