AI agent identity: why traditional IAM falls short

NIST's National Cybersecurity Center of Excellence (NCCoE) just released a concept paper on AI agent identity and authorization, with a public comment window open through April 2, 2026. They're asking the right questions. But they're using the wrong anchor. The paper frames AI agent identity through Identity and Access Management (IAM), the same framework used for human users, service accounts, and API keys. IAM verifies identity at authentication time, issues a credential, and trusts that credential until it expires or is revoked. That works for static actors with predictable behavior. AI agents are neither. The static actor problem Traditional IAM assumes the entity that authenticates is the same entity that acts. This assumption breaks for AI agents in at least three ways. First, cognitive state changes during execution. An agent running a routine task operates differently from one engaged in complex multi-step reasoning. Same agent, same credentials, but a different behavioral prof