RBAC tells you if a role can access a table. But can this agent invoke this tool on this data for this purpose? The industry is building the pieces — Cedar, Proofpoint, Cisco, Immuta — but the unified policy engine that evaluates all attributes across all layers doesn’t exist yet.
Snowflake’s managed MCP servers work with external OAuth tokens — JWT-signed, role-scoped, and RBAC-enforced. Tested end-to-end with tool discovery and SQL execution.
A pluggable semantic memory layer for AI agents inspired by the Zettelkasten method — auto-linking, importance scoring, and graph traversal across CrewAI, LangGraph, and Claude Code.
A proof-of-concept that layers authentication, encryption, and multi-agent coordination onto MCP — with four security tiers from API keys to enterprise OAuth2 with audit trails.
The agentic enterprise is real. But getting there requires a shift from generic protocol-based integrations to purpose-built agents with native tooling, embedded security, and domain-specific intelligence.
A defense-in-depth security architecture for AI agents and inference workloads — covering network isolation, identity propagation, authorization, data protection, and auditing under the EU AI Act, DORA, and NIS2.
The core challenge of AI agents: passing the human user’s identity through to Snowflake. This toolkit demonstrates JWT-to-PAT token exchange so agents execute as the actual user — with their roles, permissions, and full audit trail.