VFF - The signal in the noise
News

Permissions, not models, are the real AI agent bottleneck

Read original
Share
Permissions, not models, are the real AI agent bottleneck

Enterprise AI agents are failing not due to model limitations but because of inadequate permission and governance frameworks. Workday's Sana platform addresses this by embedding security and approval logic directly into its system of record, then integrating with Google's Gemini Enterprise. The approach reflects a broader industry recognition that agent accuracy in HR and finance contexts requires tight coupling between identity verification, authorization, and audit trails.

  • Workday launched Sana to solve the permissioning bottleneck in enterprise AI agents by making its system of record the governance layer
  • The company expanded its Google partnership to make Sana agents discoverable within Gemini Enterprise
  • Accuracy in HR and finance agent workflows depends on tight integration of identity, authorization, and audit logic, not just model performance
  • Industry experts emphasize that permissions must live in the system of record, not in separate governance layers, to avoid chaos and compliance failures

Enterprise AI adoption has stalled at a critical juncture: models are capable enough, but organizations lack frameworks to safely delegate actions on behalf of users. In regulated domains like HR and finance, a small permission error or audit gap can cascade into payroll failures or compliance violations. This article identifies the real constraint blocking agent deployment, shifting focus from model capability to governance architecture.

Companies building or deploying AI agents in enterprise settings face a hard choice: build custom permission layers (fragile and incomplete) or embed agents into existing systems of record (complex but defensible). Workday's approach offers a template for vendors, but it also signals that agent adoption will favor platforms with deep organizational context and existing security infrastructure.

  • Permission and governance cannot be bolted onto agents after the fact; they must be architected into the system from the start
  • Systems of record (ERP, HCM platforms) will become the primary governance layer for enterprise agents, not separate identity or orchestration tools
  • Accuracy in agent outputs is inseparable from identity and authorization; verification models must interrogate both the action and the actor's permissions before execution

Monitor how other enterprise software vendors respond to this permissioning challenge. Watch whether identity providers like Okta build agent governance layers or defer to systems of record. Track adoption rates of Sana and similar platforms to see if enterprises actually move agents into their core systems or continue experimenting with loosely coupled solutions.

Share

Subscribe to the newsletter

The latest stories and analysis, delivered to your inbox.

Free. No spam. Unsubscribe any time.

Related stories

Microsoft Launches AI Bug Finder Using Anthropic and OpenAI Models

Microsoft Launches AI Bug Finder Using Anthropic and OpenAI Models

Microsoft is preparing to launch Project Perception, an AI-powered security product designed to identify software bugs, set to debut as soon as July 2026. The tool will combine AI models from Anthropic, OpenAI, and Microsoft to compete in the growing cyber defense market. The product targets enterprises increasing their security spending and represents Microsoft's effort to capitalize on demand for AI-driven vulnerability detection.

by Aaron Holmes· The Information
OpenAI Automates Red Teaming with GPT-Red Self-Play System
TrendingNews

OpenAI Automates Red Teaming with GPT-Red Self-Play System

OpenAI has introduced GPT-Red, an automated red teaming system that uses self-play to identify and address vulnerabilities in AI models. The system is designed to improve safety, alignment, and robustness against prompt injection attacks. GPT-Red represents an approach to proactive AI security testing that could inform how organizations evaluate model vulnerabilities before deployment.

· OpenAI
White House Launches Gold Eagle Vulnerability Coordination Program

White House Launches Gold Eagle Vulnerability Coordination Program

The White House announced Gold Eagle, the first program emerging from its June AI cybersecurity executive order. Gold Eagle is a clearinghouse that brings together government agencies and companies to coordinate on cyber vulnerabilities. The initiative represents the administration's effort to operationalize its AI security policy through public-private coordination.

by Leo Schwartz· The Information
Apple sues OpenAI over alleged trade secret theft
TrendingNews

Apple sues OpenAI over alleged trade secret theft

Apple has filed a lawsuit against OpenAI alleging the company stole trade secrets, with the misconduct allegedly directed by OpenAI's senior leadership including a longtime former employee. The suit represents a significant escalation in tensions between two major technology companies over intellectual property and competitive practices. Details on the specific trade secrets at issue and the scope of the alleged theft remain limited based on available information.

by Sarah Perez· TechCrunch AI