This talk could prevent the next big data breach.

Building enterprise-ready AI poses challenges around data security, scalability, and integration, especially in compliance-regulated industries. We're already seeing security breaches with AI Agents in the news. This is a complex problem - Imagine having N users, M Agents and O actions. How do you design permissions around that?

This session will cover how modern permissions systems can ensure AI Agents have access only to authorized data. The talk will look at why the Google Zanzibar model of authorization which uses Relationship-Based Access Control (ReBAC) is well suited for fine-grained authorization at scale. The talk covers the nuts and bolts of how a Google Zanzibar system works under the hood, and how to apply it to AI Agents with techniques such as pre-filteration and post-filteration.

The talk will also include a live code demo implementing authorization for AI Agents + RAG using Open Source tools such as Weaviate, Langchain, OpenAI, and SpiceDB.

I'm also a leading voice in the Authorization + AI space and have been featured in the Docker and Pinecone blogs writing about the topic. I'm also the author of the official langchain-spicedb integeration to build ReBAC permissions in your AI applications.

We're working with OpenAI on securing 37 billion documents for 5 million users in ChatGPT connectors. This session is based on the learnings from that.

I've presented this and related topics at DevOpsDays, KCDs, & DevConfs
Target audience is software architects, developers and team leads.