Agents don’t fit old identity models with OpenAI Agent Security Lead Fotis Chantzis
In this episode
As OpenAI’s Agent Security Lead, Fotis Chantzis has a front-row seat to see how agents push identity systems beyond what they were built to control. In this episode, 1Password CTO Nancy Wang and 1Password VP of Engineering for Developer and AI, Jeff Malnick, ask Fotis where authentication starts to strain under the actions of agent identities, why secrets handling can get risky fast, and how teams should think about dynamic access controls.
Why agents need boundaries
Old identity models weren’t built for agents
The hardest security problems begin after access is granted
Long-running agents expose the limits of OAuth
Secrets remain one of the weakest links in agent design
How to stop agent overreach in real time with short-lived credentials and runtime boundaries
Fotis Chantzis
Fotios (Fotis) Chantzis is laying the foundation for a safe and secure Artificial General Intelligence (AGI) at OpenAI. Previously, he worked as a Principal Information Security Engineer at Mayo Clinic, where he managed and conducted technical security assessments on medical devices, clinical support systems, and critical healthcare infrastructure.
He has been a member of the core Nmap development team since 2009, when he wrote Ncrack under the mentorship of Gordon “Fyodor” Lyon during the Google Summer of Code. Chantzis has presented at notable security conferences, including DEF CON. Highlights of his work can be found at his site.
