<?xml version="1.0" encoding="utf-8" standalone="yes"?>
<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom">
	<channel>
		<title>Identity-Access-Management on Compile My Mind</title>
		<link>https://www.compilemymind.com/categories/identity-access-management/</link>
		<description>Recent content in Identity-Access-Management on Compile My Mind</description>
		<generator>Hugo</generator>
		<language>en</language>
		
		
		
		
			<lastBuildDate>Mon, 15 Jun 2026 22:33:00 +0300</lastBuildDate>
		
			<atom:link href="https://www.compilemymind.com/categories/identity-access-management/index.xml" rel="self" type="application/rss+xml" />
			<item>
				<title>Why Identity Security Matters More in the AI Era</title>
				<link>https://www.compilemymind.com/posts/why-identity-security-matters-more-ai-era/</link>
				<pubDate>Mon, 15 Jun 2026 22:33:00 +0300</pubDate>
				<guid>https://www.compilemymind.com/posts/why-identity-security-matters-more-ai-era/</guid>
				<description>&lt;p&gt;AI changes many things in cybersecurity, but one thing becomes even more obvious: &lt;strong&gt;identity is the control plane&lt;/strong&gt;.&lt;/p&gt;&#xA;&lt;p&gt;Modern security is no longer only about protecting a network perimeter. Users work from anywhere, applications live in SaaS and cloud platforms, APIs connect everything, and AI systems can now summarize data, call tools, trigger workflows, write code, and act on behalf of people. That means the most important question is often not &amp;ldquo;Is this request inside the network?&amp;rdquo; It is:&lt;/p&gt;</description>
			</item>
			<item>
				<title>MFA vs Passwordless vs Passkeys: What Is the Difference?</title>
				<link>https://www.compilemymind.com/posts/mfa-vs-passwordless-vs-passkeys/</link>
				<pubDate>Sat, 13 Jun 2026 23:05:00 +0300</pubDate>
				<guid>https://www.compilemymind.com/posts/mfa-vs-passwordless-vs-passkeys/</guid>
				<description>&lt;p&gt;Modern authentication is full of similar-sounding terms: &lt;strong&gt;MFA&lt;/strong&gt;, &lt;strong&gt;2FA&lt;/strong&gt;, &lt;strong&gt;passwordless&lt;/strong&gt;, &lt;strong&gt;FIDO2&lt;/strong&gt;, &lt;strong&gt;WebAuthn&lt;/strong&gt;, &lt;strong&gt;security keys&lt;/strong&gt;, and &lt;strong&gt;passkeys&lt;/strong&gt;. They are related, but they are not interchangeable.&lt;/p&gt;&#xA;&lt;p&gt;That distinction matters. A company can &amp;ldquo;enable MFA&amp;rdquo; and still be vulnerable to phishing. A sign-in flow can be &amp;ldquo;passwordless&amp;rdquo; and still rely on an email account that becomes the real weak point. A passkey can be very strong, but the surrounding account recovery, device enrollment, and exception process can still create risk.&lt;/p&gt;</description>
			</item>
	</channel>
</rss>
