Organizations are adopting AI agents faster than most identity and security teams can inventory, govern, or monitor them. These agents authenticate into systems, access sensitive data, and take actions across cloud and SaaS environments, often with broad privileges and limited oversight. The result: a rapidly expanding identity attack surface that traditional security tools were not built to address.
Today, Silverfort announces an integration that brings its runtime Identity Security approach to Agent Gateway, part of Google Cloud’s Gemini Enterprise Agent Platform, giving teams real-time visibility into AI agent activity and enforcing access decisions as they happen.
“Every action an AI agent takes ties back to a human user, multiple machine identities, and varying privilege levels, creating a chain of authentications and potential privilege escalation,” said Ron Rasin, Chief Security Officer at Silverfort. “As AI moves from experimentation to production, identity is becoming the control point that determines what agents can and cannot do.”
AI agents introduce new Identity Security challenges
AI agents do not fit neatly into traditional security models. Unlike a human user who logs in once and works within predictable patterns, agents can chain actions across services, escalate their own privileges, and behave in ways that are difficult to predict or trace.
This creates a set of security questions that most organizations cannot answer today: How many agents are operating in the environment? Who owns them? What can they access? Which ones are overprivileged? What happens if one is compromised?
As agents take on more autonomy and begin coordinating workflows across tools, services, and data sources, that visibility gap becomes a massive security risk.
Why runtime in Agent Gateway is the right time to secure
Agent Gateway as part of the Gemini Enterprise Agent Platform helps govern and secure AI agents accessing enterprise services. Every agent interaction flows through the gateway, which makes it the natural place to understand agent activity and apply identity security controls at scale.
By using Silverfort’s Agent Gateway integration, organizations gain visibility into agent activity without requiring teams to deploy additional infrastructure or redesign how agents are built. Developers keep building. Agents keep running. Identity and Security teams get the visibility and controls they need.
“By integrating Silverfort’s runtime identity security with Google Cloud’s Agent Gateway, we’re enabling enterprises to accelerate AI adoption while ensuring agentic workflows are governed and secure,” said Anoop Vetteth, Director, Product Management, Networking Security, Google Cloud.
What the integration delivers
Visibility into agent activity
Silverfort automatically discovers AI agents operating through Agent Gateway and maps each one back to its human owner for clear accountability. Security teams get a unified view of agent behavior, ownership, permissions, and access paths across Google Cloud and beyond.
Runtime enforcement controls
Silverfort evaluates agent requests against access policies at the gateway layer before they reach downstream systems, limiting unauthorized privileged escalation and risky agent overreach. Agents that attempt to exceed their approved scope are blocked. Unauthorized access attempts are stopped in line rather than detected after the fact.
For example, if an agent attempts to use an MCP-connected tool to access a dataset, SaaS application, or internal resource outside its approved permissions, Silverfort evaluates that request in real time through the gateway and enforces the appropriate policy response.
Risk-based prioritization
Not all agents carry the same level of risk. Silverfort analyzes agent exposure based on privilege level, access patterns, and connections to sensitive resources. Overprivileged agents, dormant credentials, and high-risk access paths get flagged and prioritized so teams can focus remediation where it matters most.
Dynamic, adaptive access policies and detailed audit trails
With Silverfort, granular access policies dynamically adapt based on real-time context and risk. All agent activity is auditable and tied to enterprise identity governance frameworks and the human using the agent.
Built for how agents actually operate
Securing AI agents requires more than a one-time authentication check. An agent may begin with a simple prompt, call multiple MCP-connected tools, interact with cloud services and data stores, and make decisions along the way based on context. That behavior is dynamic and difficult to predict.
Silverfort treats agents as identities that require continuous evaluation. By integrating at the Agent Gateway layer, Silverfort monitors agent activity across the full request flow and applies policies based on context, behavior, and access requirements.
This is especially important as organizations expand their use of agents across Gemini Enterprise Agent Platform, MCP-connected tools through Apigee, and multi-step workflows that span cloud and SaaS environments.
One Identity Security Platform for human and non-human identities
AI agents do not operate in isolation. They share access paths with human users, service accounts, and other non-human identities, and they often create overlapping risk across all of them.
Silverfort brings AI agents into the same unified Identity Security Platform used to protect human and non-human identities across cloud and on-prem environments. The agent, the human who owns it, and the non-human identities it relies on are all visible and governed from one place.
That broader context matters. Enterprises rarely run a single agentic AI platform. Silverfort extends identity security beyond Google to deliver unified visibility and control across the entire ecosystem of AI agents, regardless of location. A compromised or overprivileged agent can become a path to lateral movement, privilege escalation, or data exposure. Protecting the agent alone without visibility into the identities, other agents and systems around it leaves gaps that attackers will find.
Getting started
The Silverfort integration with Google Cloud’s Agent Gateway will be available soon. Organizations running AI agents on Google Cloud will be able to get started without installing agents or making code changes to existing workflows. Visibility begins on day one, and enforcement policies can be applied incrementally as teams build confidence in their agent inventory and access model.
To learn more about how Silverfort secures AI agents on Google Cloud, visit silverfort.com or find us on the Google Cloud Marketplace.
