Amin Hasbini

Writing

Non-Human Identity: Paper Series

A five-paper series on non-human identity for AI agents in regulated European enterprises. Each paper is published as a LinkedIn long-form article with a full-length version hosted here.

Unifying thesis: AI agents in production require a distinct identity, authorization, communication, audit, and governance stack, not a relabeling of existing service-account, RBAC, and CMDB primitives.

  1. Agents Are Not Service Accounts . Per-agent identity as the floor. Published April 21, 2026.
  2. Authorization for AI Agents, Beyond RBAC . Per-task composite-identity authorization with capability tokens. Published April 28, 2026.
  3. Authorization Without Disclosure . Zero-knowledge proofs for agent-to-agent authorization, plus the AAC reference architecture. Published May 5, 2026. Technical companion: AAC Construction Specification .
  4. Delegation Without Escalation . Capability tokens, attenuation discipline, and the patterns that survive in production. Published May 12, 2026.
  5. Auditing Agents Under NIS2, DORA, and the EU AI Act . Compliance by construction, when architecture becomes the audit evidence. Published May 19, 2026.

PQC for AI Agents: Paper Series

A second series on post-quantum cryptography as a multi-year crypto-agility program for regulated institutions, focused on the layer where it meets AI agents.

Written at executive register for CISOs, risk officers, and boards facing NIS2, DORA, and EU AI Act compliance windows. The series opens on the channel question: anchoring agent-to-agent communication on a substrate that survives both the quantum window and protocol evolution.

  1. The Channel Question . Post-quantum substrate for AI agent communication. Published June 17, 2026.

LinkedIn articles

Executive-facing essays on LinkedIn Pulse.