For the latest updates and exclusive content on industry-leading AI coverage, be sure to sign up for our daily and weekly newsletters. Learn More
Artificial Intelligence (AI) agents are on the verge of revolutionizing ID authorization processes. As they begin to operate in the background, they will need to navigate seamlessly between various applications on our behalf, without being hindered by constant login screens that can make them cumbersome.
According to Reed McGinley-Stempel, CEO of authorization platform Stytch, “Every app, or almost every app, will need to function as its own identity provider in the future.” This necessitates a new approach to permissioning that supports complex AI workflows while safeguarding sensitive proprietary and personal data.
Stytch’s latest offering, Connected Apps, is designed to address this need. The platform enables any Software as a Service (SaaS) company to act as its own identity provider (IdP), allowing AI agents and third-party apps to securely authenticate, access data, and perform actions on behalf of users.
McGinley-Stempel noted the current surge in the popularity of AI agents, stating, “You can delegate a task to an agent, and it can enable connected apps to have read and write functionality for other apps linked to the primary identity provider of a customer.”
Supporting whole-app ecosystems
Since its inception over four years ago, Stytch has been facilitating “identity handshakes,” enabling the client side to authenticate with external identity providers like Google or Microsoft, verify user identity, and share essential information for a seamless login experience.
With the introduction of Connected Apps, Stytch customers can now share data within their apps with other applications, granting third-party apps and agents the ability to verify user identity, access information, and act on users’ behalf in a controlled manner. This fosters a robust app ecosystem.
McGinley-Stempel highlighted the emergence of “unsanctioned agentic access,” where users connect AI agents to their profiles on platforms like Twitter and LinkedIn. However, ensuring security, privacy, and consent management becomes crucial, which Connected Apps aims to address by offering comprehensive permission and consent management tools.
The platform also enables secure session sharing, allowing users to maintain their identity across different domains, akin to staying logged in across various sub-domains within an enterprise’s ecosystem.
Furthermore, Stytch’s Connected Apps supports cross-device sign-in capabilities, facilitating a seamless authentication experience across multiple devices.
Providing human oversight (but avoiding push-notification fatigue)
Connected Apps leverages the OAuth protocol OpenID Connect (OIDC) to incorporate consent and access management, human-in-the-loop authorization, and a standards-driven architecture to protect sensitive B2B data.
McGinley-Stempel stressed the importance of human authorization in the age of AI agents. The platform supports APIs that deliver in-app and in-email push notifications to seek user approval before AI agents execute actions.
However, to prevent users from getting overwhelmed by push notifications, Connected Apps allows for batch processing of authorization requests, enabling users to review and approve permissions collectively, reducing notification overload.
Ultimately, enterprises recognize the ubiquitous presence of AI agents and the need for a well-defined AI strategy. McGinley-Stempel emphasized the importance of addressing both user experience and agent experience to effectively cater to the evolving landscape.
How Crew Finance is using Stytch Connected Apps
Crew Finance, an early adopter of Connected Apps, aims to create an all-encompassing banking app that merges various services like account management, bill payments, money transfers, and more, eliminating the need for physical branch visits.
The app also includes features for kids’ banking experiences, such as accounts, debit cards, savings options, and upcoming offerings like smart charge cards and investment products to instill financial literacy at a young age.
Steve Domino, Head of Engineering at Crew Finance, highlighted the importance of linking the app with external financial institutions securely. By leveraging Stytch’s Connected Apps, Crew aims to empower its AI assistant, “Penny,” to execute tasks on users’ behalf beyond the app’s ecosystem.
Domino emphasized the gradual integration of AI into Crew’s offerings, ensuring a balance between automation and human oversight to maintain user comfort and trust.
As AI agents continue to evolve, platforms like Stytch’s Connected Apps play a vital role in enabling secure, seamless interactions across diverse applications and ecosystems, paving the way for a future driven by intelligent automation and personalized experiences.
